I have a Metabase instance that has 3 types of users:
two types of super-users, who got credentials to log into Metabase:
viewers, who simply “read-only” published dashboards
However, published dashboards contains confidential data. So I want to protect “public” (i.e., published) dashboards with a password.
➥ what is the best way to implement such a password protection?
I have tried to use set up an authentication on my Apache server. However, I keep being prompted (mostly on Chromium, and not on Firefox) many times for the credentials when I access a example.com/public/dashboard/foobar dashboard — what is not very usable.
This behaviour seems to be due to Metabase sending 401 response to /api/user/current when I’m not logged in as a super-user.
That’s correct. if a Metabase account has view rights to a database/table, then they can create questions based on that. And if a dashboard is part of the same collection, then they can modify that too.
Like you said - there’s downsides with all the solutions. If you want something that would fit almost entirely, then you should probably use the Embedding and program your own interface, but that’s a lot of work.