# Check user privileges


**POST /_security/user/{user}/_has_privileges**

**All methods and paths for this operation:**

<div>
                      <span class="operation-verb get">GET</span>
                      <span class="operation-path">/_security/user/_has_privileges</span>
                      </div>
                    <div>
                      <span class="operation-verb post">POST</span>
                      <span class="operation-path">/_security/user/_has_privileges</span>
                      </div>
                    <div>
                      <span class="operation-verb get">GET</span>
                      <span class="operation-path">/_security/user/{user}/_has_privileges</span>
                      </div>
                    <div>
                      <span class="operation-verb post">POST</span>
                      <span class="operation-path">/_security/user/{user}/_has_privileges</span>
                      </div>
                    

Determine whether the specified user has a specified list of privileges.
All users can use this API, but only to determine their own privileges.
To check the privileges of other users, you must use the run as feature.

[External documentation](https://www.elastic.co/docs/reference/elasticsearch/security-privileges)

## Servers
- http://api.example.com: http://api.example.com ()


## Authentication methods
- Api key auth


## Parameters

### Path parameters
- **user** (string)
  Username


### Body: application/json (object)

- **application** (array[object])

- **cluster** (array[string])
  A list of the cluster privileges that you want to check.
- **index** (array[object])



## Responses
### 200


#### Body: application/json (object)
- **application** (object)

- **cluster** (object)

- **has_all_requested** (boolean)

- **index** (object)

- **username** (string)



[Powered by Bump.sh](https://bump.sh)