This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Log in to ask a question
Log in to ask a question

Looker user permissions

Posted on 12-12-2024 01:54 AM
zohar
Bronze 3
Bronze 3
Reply posted on --/--/---- --:-- AM

Hi,

I would like to restrict access to a specific Explore in Looker for certain users. These users should still be able to view and interact with dashboards or Looks built on top of this Explore, but they should not have the ability to access  the Explore directly.

Is there a way to achieve this using Looker’s permissions settings or any other recommended approach? I would like to ensure that the restriction applies to only one specific Explore (or model) and not globally to all Explores. Ideally, users should also not be able to "Explore from Here" from dashboard tiles, but only for the restricted Explore.

 

Solved Solved
0 3 856
Jump to Solution
0 Likes
1 ACCEPTED SOLUTION

Posted on --/--/---- --:-- AM
GavinW
Staff
Reply posted on --/--/---- --:-- AM

Access to data is controlled at the model level. So you could create a new model with this single explore in it and only give access to this model to the specific users you want to be able to see it. 

In addition, the explore permission is model specific as you can see here. This means that, if you want this subset of users to be able to see the data but not explore it, you could create a specific role that combines a permission set without the 'explore' permission with access to this specific model only.

View solution in original post

Jump to Solution
0 Likes
3 REPLIES 3

Posted on --/--/---- --:-- AM
GavinW
Staff
Reply posted on --/--/---- --:-- AM

Access to data is controlled at the model level. So you could create a new model with this single explore in it and only give access to this model to the specific users you want to be able to see it. 

In addition, the explore permission is model specific as you can see here. This means that, if you want this subset of users to be able to see the data but not explore it, you could create a specific role that combines a permission set without the 'explore' permission with access to this specific model only.

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
zohar
Bronze 3
Bronze 3
In response to GavinW
Reply posted on --/--/---- --:-- AM

@GavinW  -Thank you so much for your detailed response! Regarding the second solution you suggested, I want to make sure I understood correctly—can I create two different permission sets for two different roles and use the same model so that I can have different permissions for different users?

Jump to Solution
0 Likes

Posted on --/--/---- --:-- AM
GavinW
Staff
Reply posted on --/--/---- --:-- AM

Yes - a 'role' is a combination of a model set and a permission set. So you can give different groups (or users) different roles in relation to the same model.

Jump to Solution
Top Labels in this Space
Top Solution Authors
View all