Anyone can create a long lived access token by Going to profile → security tab.
Now they can query and control all my entities that are crucial for security.
e.g. doors, security automations, etc.
Lots of threads about RBAC features already, but please let us hide the security tab as a security through obscurity solution for now.
Yes but to get there they have to log in first.
Don’t hand out your login details to people you don’t trust.
Problem solved.
“wallpanel dashboards”
No. they do not need to login first.
Ah. You logged in for them and left it wide open.
Do you do that with your laptop?
Leave it logged in and open in a public place?
You can use URL filtering in Fully Kiosk.
That’ll work, thanks!