I’m not sure if anyone else has run into this caveat (or maybe I’m the only one), but a pointer into the right direction would be very much appreciated!
I’ve created a few user (read-only) accounts, set to view specific streams and/or dashboards, and what I’m running into is that each of these users have access to the System / Input menu, being able to see all inputs, ports and especially input names on the whole system, thus giving them “sensitive” information as to who and what else is on the system.
After a lot of hunting on the net, the only other resource I’ve been able to find was a github thread from a couple of years back: https://github.com/Graylog2/graylog2-server/issues/3883
Even though my understanding from reading the docs is that there’s no easy workaround for this (or workaround at all), this thread got me thinking after having a look at creating users through the REST API, but I can’t seem to find a way to tweak this.
Thanks in advance for any input!