Question on Memory Plugin Access Control and DLS/FLS Integration

bwa · December 10, 2025, 1:50am

Versions (relevant - OpenSearch/Dashboard/Server OS/Browser):

Describe the issue:

Configuration:

Relevant Logs or Screenshots:

While reviewing the OpenSearch Memory plugin code, I noticed that access control seems limited to the conversation creator: an OpenSearch security user can only view memories from conversations they initiated. Even if a DLS rule granting broader access exists on the memory index, the plugin appears to enforce creator-only visibility, overriding DLS.

Is my understanding correct? If so, what is the reasoning behind not leveraging OpenSearch’s built-in DLS/FLS capabilities for memory access control? Are there plans to align this with the existing security model?

Thanks!

dhrubo · December 10, 2025, 6:42am

Thanks for digging into this and for the detailed explanation.

The current Memory plugin is quite limited in how it handles access control today. In parallel, we’ve been working on a newer Agentic Memory capability in the ML Commons plugin, which is designed with a more flexible model in mind.

You can find the docs here: https://docs.opensearch.org/latest/ml-commons-plugin/agentic-memory/

It might be worth taking a look to see if it better matches your use case, and we’d really appreciate any feedback you have on it.

Topic		Replies	Views
Login Issues after applying DLS to Role Security	4	435	January 12, 2023
How is DLS applied when user has multiple roles Security	6	1262	February 2, 2024
Permissions read only not working Security	3	613	April 6, 2023
On applying DLS in role configuraiton, not able to see index pattern and dashboard details Security troubleshoot	8	149	July 12, 2024
Admin user privileges to access to PUT /.plugins-ml-config/_doc/os_chat OpenSearch	3	41	December 22, 2025

Question on Memory Plugin Access Control and DLS/FLS Integration

Related topics