https://community.fabric.microsoft.com/t5/Developer/Grant-permission-with-embedded-Power-BI/m-p/419156#M12502 <P>Personally I think this should be guaranteed through the Application authentication.</P><P>&nbsp;</P><P>By the way, the users who have the rights to access the source code should be restricted.</P><P>&nbsp;</P><P>Further, within Power BI Embedded, you could set up Row Level security:</P><P><A href="https://docs.microsoft.com/en-us/power-bi/developer/embedded-row-level-security" target="_self">Use row-level security with Power BI Embedded content</A></P><P>&nbsp;</P><P>Regards,</P><P>Michael</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 17 May 2018 02:59:12 GMT v-micsh-msft 2018-05-17T02:59:12Z https://community.fabric.microsoft.com/t5/Developer/Grant-permission-with-embedded-Power-BI/m-p/417783#M12437 <P>Hello to all,</P><P>My scenario is this:</P><P>I would like to share a power BI report with non-Power BI users, such as with customers or members of my organization who do not use Power BI.</P><P>I created a sample application, with an access token for non-Power BI users (app owns data). I followed all the documentation available online, for example this content:&nbsp;<A href="https://docs.microsoft.com/en-us/power-bi/developer/get-azuread-access-token" target="_blank">https://docs.microsoft.com/en-us/power-bi/developer/get-azuread-access-token</A></P><P>&nbsp;</P><P>It works! But I have a doubt.</P><P>Although I will implement a mechanism to allow access to the page only to authorized users, the user will have access to a web page containing javascript scripts. By displaying the source code, the user can obtain: object ID, token, report ID.<BR />So if the user sent this information to another user, the last one could access the report with simple technical operations.<BR />Even if I set a very short expiration time for the authentication token, there would always be this problem.</P><P>&nbsp;</P><P>How could I make an embedded report by api really reserved for a single group of users?</P> Tue, 15 May 2018 13:38:56 GMT https://community.fabric.microsoft.com/t5/Developer/Grant-permission-with-embedded-Power-BI/m-p/417783#M12437 Anonymous 2018-05-15T13:38:56Z https://community.fabric.microsoft.com/t5/Developer/Grant-permission-with-embedded-Power-BI/m-p/419156#M12502 <P>Personally I think this should be guaranteed through the Application authentication.</P><P>&nbsp;</P><P>By the way, the users who have the rights to access the source code should be restricted.</P><P>&nbsp;</P><P>Further, within Power BI Embedded, you could set up Row Level security:</P><P><A href="https://docs.microsoft.com/en-us/power-bi/developer/embedded-row-level-security" target="_self">Use row-level security with Power BI Embedded content</A></P><P>&nbsp;</P><P>Regards,</P><P>Michael</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 17 May 2018 02:59:12 GMT https://community.fabric.microsoft.com/t5/Developer/Grant-permission-with-embedded-Power-BI/m-p/419156#M12502 v-micsh-msft 2018-05-17T02:59:12Z https://community.fabric.microsoft.com/t5/Developer/Grant-permission-with-embedded-Power-BI/m-p/421716#M12620 <P>Thank you <a href="https://community.fabric.microsoft.com/t5/user/viewprofilepage/user-id/12718">@v-micsh-msft</a>!</P><P>&nbsp;</P><P>Your answer clarified my ideas.<BR />Through the application authentication it's possible to restrict access to whoever you want. In addition there are several mechanisms to prevent the reading of javascript code.<BR />If all this is not enough,&nbsp;I could set up row Level security: in thise case the embedded tokens can be generated with permissions limited to a specific role.<BR />Thanks so much!</P> Mon, 21 May 2018 09:58:13 GMT https://community.fabric.microsoft.com/t5/Developer/Grant-permission-with-embedded-Power-BI/m-p/421716#M12620 Anonymous 2018-05-21T09:58:13Z