Minimum privileges for all spaces

Hi,

I am trying to create a setup with multiple spaces, where a user should be restricted to a single space.

I have created a second space, however when i set the role to only have read access for dashboards to this space, when i login with that user i see the default space as a selectable space.

I am using Kibana 7.2.0

In Kibana 6.7.2 there used to be a feature called "Minimum privileges for all spaces" which resolved the above (in the role config) has this moved elsewhere?

The user is assigned the role above + Kibana_dashboard_only_user

Attached role privilegesScreenshot%20from%202019-07-25%2022-15-19

and view of spaces from the user login.

Many thanks in advance.

Hey @AQ_Amra, the kibana_dashboard_only_user grants the user read-only access to every Space in Kibana, if you only wish for them to have access to the single space you'll want to remove that role.

Dashboard Only Mode is effectively deprecated with the introduction of feature level privileges, so I'd highly recommend no longer using the kibana_dashboard_only_user role any longer and only using custom roles to grant access to a single dashboard.

Hi Brandon,

Many thanks for your response, much appreciated.

So i have removed the

kibana_dashboard_only_user

From the user privileges, and now it only has access to the space that i required.

However the settings option in kibana now appears (although they wont have access to any of the items). Is there a way to remove the settings options?

I have tried setting the new role as a Dashboards only roles in Kibana > advanced settings

@AQ_Amra, this isn't currently possible. You'll notice that even though the "Management" application is visible, the user won't be authorized to use any of those management sections. We're tracking the effort to completely hide the management application here: https://github.com/elastic/kibana/issues/35965

Great, thanks for the update.