This documentation is for Dash Enterprise.
Dash Enterprise is the fastest way to write & deploy Dash apps and
Jupyter notebooks.
10% of the Fortune 500 uses Dash Enterprise to productionize AI and
data science apps. Find out if your company is using Dash Enterprise.
By configuring an app’s viewer access settings, you can decide
who can view the app. This also affects who can see it in the
App Portal.
Newly initialized apps default to the Restricted access level, meaning only users or groups that you add can view the app (as its owner, you can always view the app, and so can co-owners and administrators).
Other access levels are Authenticated (anyone can view the app as long as they are logged in) and Unauthenticated (anyone who can access Dash Enterprise on the network can view the app). Note that your administrator
may have disabled the Unauthenticated option.
To change the viewer access level:
<img>
5. Select Save.
You can manage who has access to your Restricted apps by adding and removing individual users. If your organization uses groups, then you can also add and remove all the members of a group at once, or use a combination of individual users and groups.
To give viewer access to individual users:
Depending on how Dash Enterprise authentication is configured in your organization, users may need to log in before you can add them. See User and Group Troubleshooting for more details.
The users you added are displayed in the list of users who can view the app. Changes take effect after a few seconds.
Users are not notified when they’re given viewer access to an app. Consider letting them know by sharing the app’s URL with them.
To give viewer access to groups:
If your administrator has chosen to use nested groups (where parent groups have child groups as members), you’ll see both parent groups and child groups available. Child groups are displayed in the format “Parent group/child group”. Note that child groups do not automatically inherit viewer access that you give to its parent group. To give viewer access to a group containing child groups, you need to select each child group.
Depending on how Dash Enterprise groups are configured in your organization, a group may only be available once a member of the group has logged in. See User and Group Troubleshooting for more details.
The groups you added are displayed in the list of groups that can view the app; however, changes take effect the next time the users refresh or log in to Dash Enterprise, depending on how your administrator has configured the group. Administrators with access to Keycloak can log users out by going to Sessions > Log out all sessions, forcing them to log back in so that changes are applied.
Users are not notified when they’re given viewer access to an app. Consider letting them know by sharing the app’s URL with them.
To remove viewer access for users and groups:
Select any user or group you want to remove access for and select Remove.
Changes take effect after a few seconds for individual users, and the next time the users refresh or log in to Dash Enterprise for groups (depending on how your administrator has configured the group).
Disabling the Unauthenticated viewer access level is an administrator action and requires the admin
role.
If the apps created by the Dash developers in your organization are not suitable for unauthenticated viewing, you can prevent app owners from using
the Unauthenticated viewer access level when configuring access to their apps. Disabling the Unauthenticated viewer access level affects all apps in
Dash Enterprise, and any apps that are currently Unauthenticated are changed to Authenticated, which makes login required to view them.
To disable the Unauthenticated viewer access level:
<img>
If any apps are currently set to Unauthenticated, a warning appears with the names and owners of the Unauthenticated apps.
<img>
The Unauthenticated apps are changed to Authenticated. App owners, co-owners, and administrators can further limit access by changing the viewer access level to Restricted.
The Unauthenticated option is not available.
<img>