Pattern-based field masking disables the search

LP_Paul · May 13, 2022, 4:10pm

OpenSearch v 1.3.0
I have a role with a Pattern-based field masking on a single term.
For example,

message::/Handle SUBSCRIBE message; name:.+-/::Handle SUBSCRIBE message; name:***-

As a user with that role:

I can not use the masked field in search at all.
When I use the following search query (DQL): ‘message:“Handle SUBSCRIBE”’
I am receiving “No results match your search criteria”.
The same is happening with any other query with that field (ex. ‘message:foo’)
I can find the document by querying with other terms. In that scenario, the ‘message’ field is masked as expected.

I found no any explanation or documentation describing how field masking affects the queries on that fields. Is it designed to disable search on that fields?

Anthony · May 18, 2022, 8:12pm

Hi @LP_Paul Due to the way masking takes place, from a technical perspective - it may not be possible to support searches on the masked fields.

LP_Paul · May 18, 2022, 9:42pm

Hi @Anthony, thank you for the clarification.
2OS team: please add some limitation note to the documentation for field masking. I assume it’s important to know in advance.

Topic		Replies	Views
Clarification is sought on the functionality sequence of order execution for document level security, field level security and field masking Security	3	258	March 12, 2024
Is decorators a thing? OpenSearch	1	222	January 26, 2023
Search field containing punctuation with partial query OpenSearch troubleshoot	0	616	June 1, 2022
Help with match_phrase_prefix query on an embedded text field OpenSearch discuss , troubleshoot	2	381	August 9, 2023
Clarification relevant to wildcard query General Feedback	2	1748	August 9, 2022

Pattern-based field masking disables the search

Related Topics