Incubator-superset: How can I only authorize users to dashboards?

Created on 27 Dec 2017  路  13Comments  路  Source: apache/incubator-superset

Expected results

I want create a role only the given dashboard can be shown to him, but I can only limit his access on datasource. In another word, I want to create 2 or more different dashboards based on the same datasource, and a specified user can only see one of them. But I can't do that based on the existing security model. Is there any suggestions?

inactive
Source
picture ouyang-lunxi
👍8

Most helpful comment

+1 read-only public dashboard would be nice

picture LanDeQuHuXi on 11 May 2018
👍6

All 13 comments

Create user and the assign roles . You can start with Gamma , and create additional roles with custom access to data source.

rahulsingh303 picture rahulsingh303 on 8 Feb 2018

I don't think data source access is sufficient. ouyang-lunxi says he has two dashboards based on the same data source, and wants to provide (I presume read-only) access to one of those two dashboards. Duplicate of #1799?

mcdavey17 picture mcdavey17 on 16 Feb 2018

For now security restrictions are on a per-datasource only (also, per schema and per database), allowing users to drill-through and slice/dice the data behind the dashboard.

We do understand the use case where the user may be allowed to see a dashboard, but not to explore the underlying datasources and are planning on supporting this at some point.

mistercrunch picture mistercrunch on 19 Feb 2018
👍5

+1 read-only public dashboard would be nice

LanDeQuHuXi picture LanDeQuHuXi on 11 May 2018
👍6

+1 read-only public dashboard would be nice

mojitodaiquiri picture mojitodaiquiri on 17 May 2018

@LanDeQuHuXi @mojitodaiquiri i think that functionality is in the works:
https://github.com/apache/incubator-superset/pull/4725

teewhyli picture teewhyli on 21 May 2018

+1 read-only public dashboard would be nice

isunix picture isunix on 30 Jan 2019

@isunix Can you elaborate on the implementation steps? Thank you

cscainiao picture cscainiao on 1 Apr 2019

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. For admin, please label this issue .pinned to prevent stale bot from closing the issue.

stale[bot] picture stale[bot] on 31 May 2019

Is this feature implemented?

ug911 picture ug911 on 9 Jun 2019
👍3

is this feature is implemented? or anyone is working on it?

SonaliSihra picture SonaliSihra on 27 Aug 2019

Using the reply from @A. kyenze, I had to change some permissions to enable the user to have the following permissions:

  1. Recent Activity
  2. Favorites
  3. Dashboards Lists

So I ended up having the permissions bellow:
[can list on DashboardModelViewAsync, can dashboard on Superset, can fave dashboards on Superset, can recent activity on Superset, can favstar on Superset, can explore on Superset, can fave dashboards by username on Superset, can csrf token on Superset, can explore json on Superset]

Also had to add (of course) the datasource access rights:
[datasource access on [database_3].(id:3), datasource access on [database_3].table_2]

User Roles
Dashboards
Recent Activity
Favorite

So, because i've a generalViewer, and another role to setup the datasource access, it's really easy to add new daashboards to different users.

SWoto picture SWoto on 30 Sep 2019
👍1

@mistercrunch Is this functionality in roadmap ?

michalmisiewicz picture michalmisiewicz on 21 Oct 2019
Was this page helpful?
0 / 5 - 0 ratings

Related issues

eliab picture eliab  路  3Comments
josephtyler picture josephtyler  路  3Comments
gbrian picture gbrian  路  3Comments
deity-bram picture deity-bram  路  3Comments
fly-high-bj picture fly-high-bj  路  3Comments