We have end users but we don’t want them to be able to log in to retool. We just want them to be able to use the apps by opening the url.
What do we need to change to get this to work.
We just figured out that end users can open the database resource. We don’t want that. We only want them to have the app experience.
Sorry my bad, but I think the same applies for all of your groups to which your end users belong (starting with the "all users" group. Are you saying you're getting that error for the all users group?
Hi @Steven_W, @MiguelOrtiz is on the right track here. Check the Permissions for the 'All Users' group. It's likely that this group has default settings that is overwriting settings on other groups.
What we can do to ensure 'end-users' can only interact with the app(s):
Remove all permissions for the 'All Users' group.
Remove all 'end-users' from default groups: 'Viewers,' 'Editors,' 'Admin.' If other groups were created like 'External Users,' or 'End Users,' remove them from there as well.
Create a new Permission group with only 'use' access to Apps and Resources that the app is using. Then add your 'end-users' to this specific group.
With 'use-only' access, users will get an error when they try to access a Resource.