Grafana OSS - Dashboard permissions

  • What Grafana version and what operating system are you using?
    Docker 10.2.0

  • What are you trying to achieve?
    Allow specific user access only to specific dashboards.

  • How are you trying to achieve it?
    User has “none” role to make sure user doesn’t see any other dashboards with default “viewer” role.
    Add User to specific dashboards as viewer.

  • What happened?
    Error: User has missing permissions Like annotations:read

  • What did you expect to happen?
    User is able to only see and access dashboard it is explicitly added.

There is a feature_toggle that you need to achieved this: nestedFolder.
With this feature you can create nested folder and in the specific folder you can manage permission.
To make the user access simpler, you need to add the Team and put the user that you need to that specific Team and make as “Viewer”
To the folder that you create before, remove the Role Viewer, I suggest to remove this in all Folders, to prevent that user have global role “Viewer” to view this folder, then you need to add the Team that you created above to the Folder. In this context, the dashboard already put into the particular Folder.
Then try login with the particular user and check if the user still have permission to view other folders. If yes, check the permission of the folder again and set it only for the Team/User that you want.


Thank you… will try that.

Is there also a way to change the permissions of the default roles, like with a config file or even in source code ?
For example give the “none” role the annotations:read permission ?


Hey … is it possible to change or override the default permissions via config file somewere ?