We are trying to embed grafana dashboard in a web application in a secure way but it should not ask for login.
We tried quite a few things, but are yet to figure out the correct approach based on user or token based authentication. We are looking more into it.
Meanwhile one approach we found on discussion forums is to use nginx as reverse proxy and restrict the access to grafana based on URL which originate the request. In our case we will whitelist only web application’s domain. So only our web application’s domain will be allowed access to grafana. For this we will have to disable access to the outside world to port which grafana runs on (port 3000 in our case). Grafana can be accessed only via nginx reverse proxy.
Is this a good/valid solution? Any issues with this approach?