I use filter type "Search box" for group of users which have rights only for View collection and this filter doesn't work. When I add the rights to database - everything is OK, filter works properly.
How I can utilize this: I would like to share dashboard to group of users only with view permissions (I mean they can't edit questions and dashboard) AND ability to use filter?
Screenshots in attachment.
First one - user have rights for view in collection and have full access to db.
Second one - user have rights for view in collection and don't have access to db.
Thanks for your insight.
In case I use "No self-service" filter doesn't work. It works only in "Unrestricted" mode for database for users who have view permissions for collection.
I just tested the entire flow with 45.3 and with a user with "no self-service" data permissions and view only permissions on a collection, the user can use the filters:
`[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:15+01:00 DEBUG metabase.server.middleware.log GET /api/collection/tree 200 2.6 s (327 DB calls) App DB connections: 0/15 Jetty threads: 3/50 (15 idle, 0 queued) (189 total active threads) Queries in flight: 19 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:16+01:00 DEBUG metabase.server.middleware.log GET /api/util/bug_report_details 200 4.0 ms (1 DB calls) App DB connections: 0/15 Jetty threads: 3/50 (15 idle, 0 queued) (189 total active threads) Queries in flight: 19 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:21+01:00 DEBUG metabase.server.middleware.log POST /api/dashboard/77/dashcard/1444/card/273/query 202 [ASYNC: completed] 20.0 s (20 DB calls) App DB connections: 2/15 Jetty threads: 2/50 (16 idle, 0 queued) (189 total active threads) Queries in flight: 18 (0 queued); postgres DB 4 connections: 13/15 (0 threads blocked)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:21+01:00 DEBUG metabase.server.middleware.log POST /api/dashboard/77/dashcard/1445/card/275/query 202 [ASYNC: completed] 20.7 s (24 DB calls) App DB connections: 2/15 Jetty threads: 2/50 (16 idle, 0 queued) (189 total active threads) Queries in flight: 17 (0 queued); postgres DB 4 connections: 14/15 (0 threads blocked)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:23+01:00 DEBUG metabase.server.middleware.log GET /api/session/properties 200 34.6 ms (4 DB calls) App DB connections: 2/15 Jetty threads: 5/50 (13 idle, 0 queued) (189 total active threads) Queries in flight: 17 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:23+01:00 DEBUG metabase.server.middleware.log GET /api/user/current 200 29.3 ms (9 DB calls) App DB connections: 1/15 Jetty threads: 5/50 (13 idle, 0 queued) (189 total active threads) Queries in flight: 17 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:23+01:00 DEBUG metabase.server.middleware.log GET /api/bookmark 200 12.9 ms (1 DB calls) App DB connections: 4/15 Jetty threads: 7/50 (11 idle, 0 queued) (189 total active threads) Queries in flight: 17 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:23+01:00 WARN metabase.server.middleware.log GET /api/collection/root 403 22.8 ms (2 DB calls)
"You don't have permissions to do that."
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:23+01:00 DEBUG metabase.server.middleware.log GET /api/database 200 20.5 ms (3 DB calls) App DB connections: 2/15 Jetty threads: 5/50 (13 idle, 0 queued) (189 total active threads) Queries in flight: 17 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:23+01:00 DEBUG metabase.server.middleware.log GET /api/collection/tree 200 50.7 ms (5 DB calls) App DB connections: 2/15 Jetty threads: 4/50 (14 idle, 0 queued) (189 total active threads) Queries in flight: 17 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:23+01:00 DEBUG metabase.server.middleware.log GET /api/dashboard/77 200 169.9 ms (17 DB calls) App DB connections: 1/15 Jetty threads: 3/50 (15 idle, 0 queued) (189 total active threads) Queries in flight: 17 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:24+01:00 WARN metabase.server.middleware.log GET /api/database/4/schemas 403 21.4 ms (3 DB calls)
"You don't have permissions to do that."
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:24+01:00 WARN metabase.server.middleware.log GET /api/table/158/query_metadata 403 31.2 ms (3 DB calls)
"You don't have permissions to do that."
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:24+01:00 DEBUG metabase.server.middleware.log GET /api/collection/212 200 23.1 ms (3 DB calls) App DB connections: 0/15 Jetty threads: 3/50 (15 idle, 0 queued) (189 total active threads) Queries in flight: 17 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:27+01:00 DEBUG metabase.server.middleware.log GET /api/user/current 401 1.7 ms (0 DB calls)
"Unauthenticated"
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:27+01:00 DEBUG metabase.server.middleware.log GET /api/session/properties 200 22.4 ms (2 DB calls) App DB connections: 0/15 Jetty threads: 3/50 (15 idle, 0 queued) (192 total active threads) Queries in flight: 22 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:29+01:00 DEBUG metabase.server.middleware.log POST /api/dashboard/77/dashcard/1443/card/194/query 202 [ASYNC: completed] 28.1 s (20 DB calls) App DB connections: 2/15 Jetty threads: 2/50 (16 idle, 0 queued) (192 total active threads) Queries in flight: 21 (0 queued); postgres DB 4 connections: 15/15 (0 threads blocked)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:29+01:00 DEBUG metabase.server.middleware.log GET /api/session/properties 200 33.1 ms (4 DB calls) App DB connections: 1/15 Jetty threads: 4/50 (14 idle, 0 queued) (192 total active threads) Queries in flight: 21 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:29+01:00 DEBUG metabase.server.middleware.log GET /api/user/current 200 80.3 ms (9 DB calls) App DB connections: 0/15 Jetty threads: 3/50 (15 idle, 0 queued) (192 total active threads) Queries in flight: 21 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:29+01:00 WARN metabase.server.middleware.log GET /api/collection/root 403 14.1 ms (2 DB calls)
"You don't have permissions to do that."
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:29+01:00 DEBUG metabase.server.middleware.log GET /api/bookmark 200 11.7 ms (1 DB calls) App DB connections: 2/15 Jetty threads: 6/50 (12 idle, 0 queued) (192 total active threads) Queries in flight: 21 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:29+01:00 DEBUG metabase.server.middleware.log GET /api/database 200 28.9 ms (3 DB calls) App DB connections: 3/15 Jetty threads: 5/50 (13 idle, 0 queued) (192 total active threads) Queries in flight: 21 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:29+01:00 DEBUG metabase.server.middleware.log GET /api/collection/tree 200 51.0 ms (5 DB calls) App DB connections: 2/15 Jetty threads: 4/50 (14 idle, 0 queued) (192 total active threads) Queries in flight: 21 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:29+01:00 DEBUG metabase.server.middleware.log GET /api/dashboard/77 200 159.2 ms (17 DB calls) App DB connections: 1/15 Jetty threads: 3/50 (15 idle, 0 queued) (192 total active threads) Queries in flight: 21 (0 queued)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:30+01:00 WARN metabase.server.middleware.log GET /api/database/4/schemas 403 19.1 ms (3 DB calls)
"You don't have permissions to do that."
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:30+01:00 DEBUG metabase.server.middleware.log POST /api/dashboard/77/dashcard/1443/card/194/query 202 [ASYNC: canceled] 16.2 s (17 DB calls) App DB connections: 1/15 Jetty threads: 3/50 (15 idle, 0 queued) (192 total active threads) Queries in flight: 20 (0 queued); postgres DB 4 connections: 15/15 (2 threads blocked)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:30+01:00 DEBUG metabase.server.middleware.log POST /api/dashboard/77/dashcard/1445/card/275/query 202 [ASYNC: canceled] 16.2 s (21 DB calls) App DB connections: 1/15 Jetty threads: 3/50 (15 idle, 0 queued) (192 total active threads) Queries in flight: 18 (0 queued); postgres DB 4 connections: 15/15 (3 threads blocked)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:30+01:00 DEBUG metabase.server.middleware.log POST /api/dashboard/77/dashcard/1444/card/273/query 202 [ASYNC: canceled] 16.2 s (17 DB calls) App DB connections: 1/15 Jetty threads: 3/50 (15 idle, 0 queued) (192 total active threads) Queries in flight: 18 (0 queued); postgres DB 4 connections: 15/15 (1 threads blocked)
[a1f91a47-30c1-48e0-abbd-eb71390c86de] 2023-03-13T09:33:30+01:00 WARN metabase.server.middleware.log GET /api/table/158/query_metadata 403 30.8 ms (3 DB calls)
"You don't have permissions to do that."`