I would like to build out dashboards within Kibana and then embed into an app. I have seen the basic embedding feature using iframes, but I am interested in knowing how I could go about securing the data set based on what a user has access to.
It would be great to hear from some people that have used this app customer facing rather than just for internal usage.
For now, you can accomplish what you want to do with the Security feature in X-Pack. You can configure different roles, which you can assign to your users. Each role can be configured to have access to certain indices. If a user views a dashboard that contains a visualization which references a disallowed index (based on their role's permissions), then it will just show up blank.
Here's more info on how Security works in X-Pack: https://www.elastic.co/guide/en/x-pack/current/authorization.html
Note that this is a short-term problem, and in the long-term we'll be focusing on object-level security which will prevent the blank visualization from showing up in the dashboard at all, if the user isn't allowed to see it.
Please let me know if this helps!
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.