is there a way to set some sort of permissions when sharing kibana dashboard with others. I'm worried that someone would either delete it or make changes and save it. I googled but didn't find anything.
A lot has happened since the question was asked. Role based access control is now available in the community edition since May.
https://www.elastic.co/blog/security-for-elasticsearch-is-now-free
Without shield, you can try to lock .kibana index on read only mode :
curl -XPUT 'localhost:9200/.kibana/_settings' -d '{ "index.blocks.read_only" : true }'
It's working well, nobody can save/delete a dashboard / search / visualization. If user resize / move something on dashboard he can reset easily by bookmarking dashboard without parameters in url (or load it directly).
You can check more options about indices : https://www.elastic.co/guide/en/elasticsearch/reference/1.4/indices-update-settings.html
When you go to the configure items of widgets and the dashboard (top right of the screen) you can set the editable flag to false. Beware though, now you cannot change it yourself anymore as well. Other options are available to provide the dashboard as a script, you can export it, enough options. But there is not something like, I am user x and I am the only one who can make changes.
Well like what jettro said, "there is not something like, i am user x and i am the only one who can make changes"
With that being said, others can still overwrite your dashboard. They just need to save it and than open it up using editor. Once that is done, they can start editing it. Unless they are someone who don't know anything about it.
Related
The text on my wordpress text editor is white on a white background so its invisible for most people..
I searched it and the solution I found was to add the following code to wp-config.php
define('CONCATENATE_SCRIPTS', false );
It worked fine but I couldn't find what it does or why it works.
I only found a question that asks the same thing here but it didn't get an answer.
Could someone explain what the code above does and why it works?
First of all, nice question.
CONCATENATE_SCRIPTS is the constant that tells wordpress to, well.. concatenate all of the dependencies into one URL and load it together ( to save http requests I guess ).
As far as I know, it applies only to the Admin area ( back end ).
The result is a url like
<script src="http://somewordpress.site/wp-admin/load-scripts.php?c=1&load=jquery-ui-core,jquery-ui-widget,jquery-ui-mouse,jquery-ui-sortable,hoverIntent,common,jquery-color,wp-ajax-response,wp-lists,jquery-ui-resizable,quicktags,jquery-query,admin-comments,postbox,dashboard,thickbox,plugin-install,media-upload&ver=e0f647a6df61adcc7200ce17a647db7f" type="text/javascript">
This is the normal default behavior, and if you have problems with it, it is probably because of some javascript conflict in theme or plugin.
Another possible ( albeit less frequent ) is a browser problem due to TinyMCE caching. clear browser cache. ( edit : was true to Sep.2015 - not verified since but still worth trying )
If you really want to see where it is defined or what is it doing you can look here.
Anyhow, by defining the constant as false you are practically forcing WordPress to load each script on the administration page individually rater than collectively.
So in that case - If one script fails to load and work correctly, the others can still continue to operate correctly.
This is a recommended setting for debugging and local development.
However, in your case, it is a symptom of a problem, and not the problem itself. you should isolate the problem and fix it ( probably a plugin like said before )
To expand upon Obmerk's answer, in my case setting CONCATENATE_SCRIPTS to false simply enabled me to see the individual failure in the browser console as it then showed the javascript for tinymce was not loading properly. Then looking at server logs showed that wp-tinymce.php was not executing properly. In the end, I needed to fix the permissions of {sitepath}/wp-includes/js/tinymce/wp-tinymce.php so that the security settings of the server I was on would allow it to run.
In my case the server did not allow it to be group-writable so a chmod 755 took care of it. The actual solution will vary based on your server configuration.
I have an online magazine with news articles and i want to make an open graph action that everytime a user reads an article a story to post in his timeline.
I have all the nececery open graph tags in my urls and a login button with publish_actions scope.
I'm one step away from submitting the action for approval but i still cant figure out one thing.
The facebook's documentation says that i need to give users an option to stop auto publishing or remove the app etc. something like the image in the middle of this page http://developers.facebook.com/docs/opengraph/actions/builtin/#read .
I saw it also on yahoo and its exacly the same.
How can i make something like this in my site? The code is ready somewhere or i have to write it myself?
Thanks in advance!
The permission remove, or just a switch to stop publish of action and the delete article functions will have to be developed by you.
I am working on the same things for my app.
creating user CP control panel containing, revoke perms buttons.
a user CP to swich publishing on and off, via true/false in mysql
an array of app activities with delete buttons.
Many times I want to show a client how their site is progressing or show someone my current work on a theme to get feedback. I would like a way to send a link possibly with ?theme=.... in the URI that doesn't require a log in.
Currently I have to log in to show the client or others to show progress and get feedback.
Any known ways of doing this?
This could solve you problem.
Works with a sidebar which you could set temperarly
http://wordpress.org/extend/plugins/theme-switcher/
this one works with ?preview_theme=my-theme
http://wordpress.org/extend/plugins/theme-preview/
My completely finished website started displaying "region" in all the regions instead of the content. This was shortly after I enabled "Calendar Multiday" so perhaps it was related (although I have now disabled that module). Calendar and Date were previously enabled and working perfectly. I am not actually sure if the problem has anything to do with the module.
Anyone seen anything like this? Could it have to do with access control? I disabled the module but that didn't do anything..
To be clear, even admins cannot see the content and simply see "region" in every region.
please clear the cache and tell me if its solved the problem... you can clear the cache by flushing the database tables that start with cache_... , or by implementing cache_clear_all(), drupal_flush_all_caches() functions ...
Check the region.tpl.php file if you have this problem as it was overriding all my content!
I have an ASP.Net application which as desired feature, users would like to be able to take a screenshot. While I know this can be simulated, it would be really great to have a way to take a URL (or the current rendered page), and turn it into an image which can be stored on the server.
Is this crazy? Is there a way to do it? If so, any references?
I can tell you right now that there is no way to do it from inside the browser, nor should there be. Imagine that your page embeds GMail in an iframe. You could then steal a screenshot of the person's GMail inbox!
This could be made safe by having the browser "black out" all iframes and embeds that would violate cross-domain restrictions.
You could certainly write an extension to do this, but be aware of the security considerations outlined above.
Update: You can use a canvas utility function to get a screenshot of a page on the same origin as your code. There's even a lib to allow you to do this: http://experiments.hertzen.com/jsfeedback/
You can find other possible answers here: Using HTML5/Canvas/JavaScript to take screenshots
Browsershots has an XML-RPC interface and available source code (in Python).
I used the free assembly UrlScreenshot.dll which you can download here.
Works nicely!
There is also WebSiteScreenShot but it's not free.
You could try a browser plugin like IE7 Pro for Internet Explorer which allows you to save a screenshot of the current site to a file on disk. I'm sure there is a comparable plugin for FireFox out there as well.
If you want to do something like you described. You need to call an external process that prints the IE output as described here.
Why don't you take another approach?
If you have the need that users can view the same content over again, then it sounds like that is a business requirement for your application, and so you should be building it into your application.
Structure the URL so that when the same user (assuming you have sessions and the application shows different things to different users) visits the same URL, they always see same thing. They can then bookmark the URL locally, or you can even have an application feature that saves it in a user profile.
Part of this would mean making "clean urls", eg, site.com/view/whatever-information-needed-here.
If you are doing time-based data, where it changes as it gets older, there are probably a couple possible approaches.
If your data is not changing on a regular basis, then you could make the "current" page always, eg, site.com/view/2008-10-20 (add hour/minute/second as appropriate).
If it is refreshing, and/or updating more regularly, have the "current" page as site.com/view .. but allow specifying the exact time afterwards. In this case, you'd have to have a "link to this page" type function, which would link to the permanent URL with the full date/time. Look to google maps for inspiration here-- if you scroll across a map, you can always click "link to here" and it will provide a link that includes the GPS coordinates, objects on the map, etc. In that case it's not a very friendly url but it does work quite well. :)