I tested the new version ROR Enterprise plugin 1.30.0 for ELK 7.10.2 but my TEST user with restricted kibana_hide_apps: [“Management|Stack Management”]
can still see and use Kibana -> Home: Manage
he doesn’t see Stack management in left menu but he can still open the link http:///app/management (no redirection back to the default page)
@sscarduzio a related question. Previously, hide apps was useful, when that was the only way to control access to individual apps. Now using Kibana space also, you can technically achieve same result. Kibana space can also be secured through native xpack security that comes with basic license. Its a simple - all access, read only and none.
Previously, there was no plan to support Kibana space as you were looking at a platform rehaul due to upcoming Kibana 8 changes, So didn’t make sense to add support at that time. But now that ROR has been updated to support the new Kibana platform, would you like to revisit supporting Kibana space in ROR ? What is the roadmap for supporting Kibana space in 7.9 and above, which uses the new ROR platform. Can you please shed some light on it?
Hi @askids, spaces is not incompatible with ROR hidden apps feature. You can use both at the moment.
Although they are similar, there are a few radical differences between disabling features with spaces and using ROR Hidden apps:
Granularity: ROR Hidden apps can disable sub-menu items
Permissions: unless a tenant has kibana_access “ro” or “ro_strict”, they can go and re-enable the disabled space features. With ROR Hidden apps you need ACL editing permissions (admin)
Globality: ROR Hidden apps make sure the tenant cannot see the menu items in ALL spces, included newly created ones.