There are two levels of permission to use the SP Dashboard Portal to visualize information:
This section explains the levels of permission granted for users of the Dashboard Portal. For granting permission for individual dashboards within the portal, see Securing Dashboards.
- Creator: User roles with this permission level have administrative privileges over he Dashboard Portal. They are allowed to design, view, edit, or delete dashboards. They can also create, edit and delete widgets and pages for dashbaords.
- Viewer: User roles with this permission level are only allowed to view dashboards.
The following topics cover how to configure dashboard authorization:
Prerequisites
Before configuring Dashboard Portal permissions, the user roles to be assigned permissions must be already defined in the user store with the required user IDs. For detailed instructions, see User Management.
Configuring permissions
The following is a sample configuration of user roles for the Dashboard Portal. These user roles are defined in the <SP_HOME>/conf/dashboard/deployment.yaml
file under the wso2.dashboard.portal:
namespace as shown below.
wso2.dashboard.portal: roles: creator: - name: role1 id: 1 viewer: - name: role2 id: 2
When you configure authorization for the Dashboard Portal and other dashboard components of WSO2 SP (i.e., Status Dashboard and Business Rules Manager), ensure that the session timeout interval you define is greater than one minute. This is because the system checks the user credentials and keeps extending the session every minute until the session timeout is reached. For more information about configuring authorization, see User Management via the IdP Client Interface.