Hello!
Please, Is there any recomendation to block the /admin URL to specifc IP address for security pourposes?
We tried to block it under apache reverse proxy, but it broke Metabase URL's.
Thanks in advance!
Gabriel.
Hi @gferrette
Don't add the users to the Administrators group, then they don't have access to Admin Panel.
There's really nothing in /admin that does anything. It just shows information from the API.
You would have to block the API calls individually.
https://www.metabase.com/docs/latest/api-documentation.html
Not sure why you broke something, but you'll likely find better help on how to configure Apache in a forum dedicated to that, since it's not specific to Metabase.
Hello @flamber!
Thanks for quick replying.
Ok! We will read the api documentation and investigate Apache configurations as well.
Thanks again.
Gabriel.