I am using a i-frame that show to user kibana dashboard. This i-frame is in my web application. When user view this page in browser , user can see request url from network tab. If user copy the url and paste another browser tab , user can view kibana page without any authentication. I am using nginx reverse-proxy by the way.
I wanna create a server side proxy that can handle traffic between es and kibana. Is that possible? So user can't see kibana page without authentication outside web application.