Grant read-only access to the Public role for a specific dashboard without any additional permissions #24051
Replies: 6 comments 10 replies
-
I didn't find a way to allow dashboards to be public without giving the users the ability to browser around the superset UI, they can even see the list of another public dashboards accessing |
Beta Was this translation helpful? Give feedback.
-
Seems like you just have to figure out the right set of permissions you want for this role. |
Beta Was this translation helpful? Give feedback.
-
@nytai the minimal permissions needed for the Public role to be able to see dashboards and use filters are these, in my experience:
But with these permissions they can also access the list of Public dashboards on |
Beta Was this translation helpful? Give feedback.
-
@Stefan781 Hello, did you found something it worked for you ? |
Beta Was this translation helpful? Give feedback.
-
It uses read permissions of two different users for one control panel. These users should see a column named product_id. For example; Let the product_id column have data 1,2,3,4,5. The first user can see data 1 in the product_id column. 2,3,4,5 should see the data masked. how can i do that |
Beta Was this translation helpful? Give feedback.
-
Here are the minimum permissions needed to have a public dashboard. Note that I used a very simple dashboard with only one chart |
Beta Was this translation helpful? Give feedback.
-
I would like to grant read-only access to the Public role for an available dashboard. I know that one can theoretically achieve with the RBAC flag. However, it occurs to me that this does not work if you don't give custom permissions to the Public role, such as the ability to view dashboards. If you simply assign a role without permissions to a dashboard, Superset will inform about "Access Denied" when attempting to visit the dashboard via a hyperlink.
One way to work around this issue is to give Alpha permissions with the PUBLIC_ROLE_LIKE. However, this has the unwanted side effect of allowing the user to click around and get access to parts of the UI that they shouldn't see, such as the chart editing UI.
I would like a cleaner solution that would allow me to present to the user only what the dashboard displays, including any filters I have created for it. Is there a way to achieve this?
As an additional information, what I am looking for is to be able to embed a dashboard as standalone on a web page. The current approach with the Alpha permissions allows the user to click around the charts and enter the UI for editing them. The user shouldn't even have an option to open the options menu on a chart (the three dots). Perhaps there is a different way to achieve this?
Beta Was this translation helpful? Give feedback.
All reactions