What does the * mean in security plugin permissions?

In the Permissions documentation various permissions are listed twice, once with and once without a * appended.

For example:

  • indices:data/write/bulk
  • indices:data/write/bulk*

What is the difference between these permissions? What does the * mean? I was unable to find any documentation regarding this.

@Saber I did some testing and they act the same.

I’d say indices:data/write/bulk* is future-proof permission. If any more granular permission is presented in the indices:data/write/bulk then you won’t need to change anything in your roles.

1 Like