OK, here is an idea that is probably utterly hair-brained but maybe (just maybe) could be a way forward.
We all know that allowing public access to Grafana is to expose all your backend metrics, but it would be lovely to be able to allow anyone to see certain dashboards.
Would it make sense to have a proxy server that is configured to allow access to certain dashboards and that does not pass the user’s request to grafana, but instead uses the user’s request to map to a dashboard url.
So for example a user requests https://grafanaproxy.mydomain.org/dashboard1 and the proxy is configured to receive that request, translate it into http://realgrafana.mydomain.org:3000/d/000000001/dashboard1?apitoken=12345&orgId=1 which it requests then passes the result back to the user’s browser.
The proxy would simply hand back an error page if the requested url is not mapped to a dashboard.
It would need a config file with request->dashboard mappings.
Could that work, or is the happiness of Friday afternoon getting to me and I’m being monumentally stupid?