Hi :
I have provided only read permissions for users on a dashboard, yet they are able to see the contents of the edit option. I would like to grey that out for these users.
Could you provide what needs to be done, to hide out the edit option from dashboards.
Thanks,
Mohammed
The css option is a good one, however this potentially requires you to add this css to all the dashboards in your app.
Another option is to add the following to your dashboard.js file (that gets loaded by default on all dashboards in your app):
document.getElementsByClassName('edit-other')[0].style.visibility='hidden';
Remember to bump after changes to javascript.
I know it is an old question but still posting the answer in case someone searching for similar solution:
Create a panel at the end of your dashboard. This will hide the button containing "Clone" option:
<row>
<panel depends="$hidden$">
<html>
<style>
.edit-other {
visibility: hidden !important;
}
</style>
</html>
</panel>
</row>
Add this if you want to get rid of the menu bars as well.
.view---pages-enterprise---7-0-5-3---1zrJY {
visibility: hidden !important;
}
Hi,
make sure that:
Yeah but he can still clone it and modify the searches in the clone thus missing the point... Hiding the edit button is only useful if you don't want the users to access the query.
In Splunk 6.2, you have the option to disable edit controls at the page level. Unfortunately, this applies to all users that access the dashboard (admin, power, and user alike).
You would need to edit your dashboard xml as follows:
<form hideEdit="true">
....
</form>
While this does indeed disable the ability to edit the form, it also removes the Print and Export as .pdf controls, which is something that I would like the users to still be able to do. Therein lies a problem with this approach, which I would have otherwise adopted.
For purely viewing dashboards there's a very simple solution.
Create a role and an app for each bunch of non-IT people. Give the users that role, do not inherit from default roles, and only give that role access to their specific app(s). By disabling access to the search app they lose not only the default search interface to fiddle around with search commands, but they also lose the entire manager.
As a result, users with such a role get to see their dashboards and forms, but not much else.
@martin_mueller, will you please elaborate on exactly how to do this? For example, what specific capabilites
would this role
have? What would the local.meta
(or default.meta
) contain? I need to do exactly this.
As much I agree with @martin_mueller answer I dislike the fact Splunk GUI doesn't offer an option to disable users to create/clone things or fiddle around with search commands. It would require a good amount of dev and custom pages to get rid of those things... For IT personal is fine, but once you open dashboards for business people the interface should be simplified!
Cloning something only needs read permissions because all your writing is done to a new private object - users can always do that as far as I know, and no harm comes from that because it's essentially the same as creating the new private object from scratch by copying over the data from a second browser window.
Nobody else will see it as long as the user doesn't have app write permissions and shares the object.