ReadonlyREST is an Elasticsearch and Kibana security plugin suite from Beshu Limited. Its core goal is to provide secure isolation for multiple projects and teams within a single Elasticsearch/Kibana environment, reducing the cost of creating a separate cluster for each project. The site highlights support for hosting 1000+ fully isolated tenants in one cluster, with compatibility for Elastic Cloud and ECK/Kubernetes.
In terms of protection, it covers index-, document-, and field-level access control, supports IP-level ACLs, TLS/SSL transport and HTTPS, and provides Kibana access-level control, app hiding, tenant switching, and multi-tenant isolation. Authentication integrations are fairly comprehensive: the main content explicitly mentions LDAP, SAML, OpenID Connect, JWT, proxy-based auth, external Basic Auth, REST microservices, and other methods. Deployment is mainly through an Elasticsearch Plugin and Kibana Plugin. It also provides a Docker PoC, supports Elastic Cloud Trusted environments and Cross Cluster Search, and can be used with ECK.
ReadonlyREST’s management features are designed to be operations-friendly. The Enterprise edition supports a security settings GUI and API that do not require restarts; after adding users, adjusting permissions, or modifying LDAP connectors, nodes can pick up the changes within seconds. For auditing, it can log access, failed logins, and data access, and monitor resource consumption at the individual-user level. Audit logs can also be shipped to a remote Elasticsearch cluster for centralized analysis. On the Kibana side, it also supports custom CSS/JavaScript, branding, embedded dashboards, and hiding specific applications.
Specific pricing is not publicly listed and requires a quote. The product is divided into GPLv3 Elasticsearch Plugin, Commercial Elasticsearch Plugin, Free Kibana Plugin, PRO Kibana Plugin, and Enterprise Kibana Plugin. The four-week free trial can be extended on request. Note that capabilities such as SAML/OIDC, multi-tenancy, and SLA email support are concentrated in the Enterprise edition, while the PRO edition focuses more on customizing the Kibana experience.
Its strengths are its deep security governance capabilities around the Elastic Stack, making it especially suitable for shared clusters, multi-tenant platforms, enterprise identity integration, and audit-tracing scenarios. The free edition and trial also make quick PoCs easy. The downsides are that commercial pricing is not transparent and some advanced features require a paid plan. The official site also notes that a few of the latest Kibana applications are not yet fully compatible, and the GPLv3 license should be assessed carefully for commercial closed-source integrations.
The main content does not provide information about network accessibility from China, RMB payments, or local代理/support, so China access status is rated as unknown. For domestic deployment in China, alternatives such as Elastic’s native security features, Search Guard, OpenSearch Security, or Apache Ranger may also be worth evaluating.
⚠ This review is compiled from public sources and does not constitute a purchase recommendation. Verify all facts on the vendor's official site. Verify on readonlyrest.com official site.
readonlyrest.com is an Italy Cybersecurity provider. TG4G tracks its product information, an overall rating of 8.0/10, and a China-accessibility score of China direct-connect friendly. Click "Visit Official Site" to reach readonlyrest.com directly.