Ability to have different authentication levels for users #4714
Comments
|
I moved this to a comment on #4453 |
|
@rashidkpc I appreciate that you moved it. However, I created this issue due to the fact that the issue you highlight mentions this: I believe am requesting super-user priviledges and fine-grain control. or not? :) |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In our use-case we are looking to start deploying Kibana to a very broad user base. To prevent issues with people 'accidentally' breaking something for someone else (for example, deleting someone else's dashboard) we want to be able to define authorization levels.
I was thinking something like this (as an example):
Problem (as far as I can tell with the current releases) is that the level of lockdown is not to this level of detail that I am explaining. For example, I am able to remove the settings plugin, which gives me some security that the the settings will not get messed with. But this also removes the functionality/ability for users to manage saved objects (since it is nested within the settings plugin).
Another example of this is visualizations. I don't want regular users to create and store visualizations (they are just stopping by to check out content that is already there) - but disabling the visualization plugin will not just remove the visualizations tab; it completely disables all and every visualizations.
I hope I was extensive enough with examples to portray what I am talking about. The solution I had in mind would involve having the ability to customize in a more detailed level what users are presented with, maybe in the form of tags or buckets that you can predefine.
A requirement for this to work is obviously that the authentication framework is in place (issue #3904 / #4419 / #4634).
The text was updated successfully, but these errors were encountered: