elasticsearch.com works on security problems and will offer a solution: Shield [1]
It seems that you have to pay the support to enable Shield on elasticsearch. Probably the same business model as for marvel, free as in free beer for development and have to pay for production
Based on what I read here, it seems to be the equivalent of "Mysql users/Postgres roles" applied to ES.
I don't know how they will propose the feature but if we compare to mysql, it wouldn't be possible to map application permissions to mysql users/privileges. Mysql privileges are for "administration" accounts but not for the user management of the application itself.
Anyhow, Shield doesn't isn't likely to be an open source product. Tuleap, on its side, is 100% open source so it's a no go !
It seems that you have to pay the support to enable Shield on elasticsearch. Probably the same business model as for marvel, free as in free beer for development and have to pay for production
[1] http://www.elasticsearch.org/overview/shield/