Hello, community.
I have written custom exporter that pushes some custom metrics to my victoriametrics instance deployed in cloud.
Some time ago I was the only user and admin of Grafana/ It was fine, but now I have multiply users of my exporter+Grafana and i faced a problem.
Problem: user USER1 must not have any opportunity to get metrics of USER2.
What i have now:
For example, USER1 sends metric some_metric{hostname=user1_hostname[1:N]), USER2 sends metric some_metric{hostname=user2_hostname[1:N]). Instance name is set on a user’s side in settings of exporter (this can not be changed as I have no other option to get his “business” instance name).
I create new user, create new folder named as user, copy “golden” set of dashboards (with HOSTNAME var) to a new user’s folder, delete folder common permissions “Editor, Viewer”, add user permission as Viewer only to that folder.
To restrict usage of only user’s set of hostname i go to Settings → Variables → HOSTNAME → Regex and set “/user1_/”. Now, user can see only his metrics changing variable “HOSTNAME”
What i need:
The problem is that I what user to create/edit dashboards in their folder as they need, but only within the set of their instances they push.
I can not set Editor permissions to dashboards as user can simply change Regex.
“Organization” and “Teams” features does not give me what i need.
“Project” is in beta state, I can change anything: delete dashboards, add new labels, reorganize permissions, change exporter logic, etc