[Authz] Explicitly added superuser privileges for security/session/_i…

…nvalidate route

x-pack/platform/plugins/shared/security/server/routes/session_management/invalidate.test.ts

@@ -9,6 +9,7 @@ import type { ObjectType } from '@kbn/config-schema';
 import type { RequestHandler, RouteConfig } from '@kbn/core/server';
 import { kibanaResponseFactory } from '@kbn/core/server';
 import { httpServerMock } from '@kbn/core/server/mocks';
+import { ReservedPrivilegesSet } from '@kbn/core-http-server';
 import type { PublicMethodsOf } from '@kbn/utility-types';
 
 import { defineInvalidateSessionsRoutes } from './invalidate';
@@ -48,7 +49,9 @@ describe('Invalidate sessions routes', () => {
         summary: 'Invalidate user sessions',
       });
 
-      expect(routeConfig.security?.authz).toEqual({ requiredPrivileges: ['sessionManagement'] });
+      expect(routeConfig.security?.authz).toEqual({
+        requiredPrivileges: [ReservedPrivilegesSet.superuser],
+      });
 
       const bodySchema = (routeConfig.validate as any).body as ObjectType;
       expect(() => bodySchema.validate({})).toThrowErrorMatchingInlineSnapshot(

x-pack/platform/plugins/shared/security/server/routes/session_management/invalidate.ts

@@ -6,6 +6,7 @@
  */
 
 import { schema } from '@kbn/config-schema';
+import { ReservedPrivilegesSet } from '@kbn/core-http-server';
 
 import type { RouteDefinitionParams } from '..';
 
@@ -39,7 +40,7 @@ export function defineInvalidateSessionsRoutes({
       },
       security: {
         authz: {
-          requiredPrivileges: ['sessionManagement'],
+          requiredPrivileges: [ReservedPrivilegesSet.superuser],
         },
       },
       options: {