Everything works fine when using a powerful user/role.
Now, I'm trying to limit the capabilities of that user, but cannot find any relevant capability for adding data into index, via the REST API.
What are the "least privileges" in this case?
You'll need "edit_tcp" to be able create events via the "/services/receivers/simple" API.
Yeah, no doubt! I only found out what the necessary permission was after spending way to much on it.