What is the best practice to build a firestore dashboard with retool?

I have multi-users who come from two different permission groups.
The user group can only view and the admin group can do CRUD operations.
I want a login page.
What is the best practice for this?

Lucky for you, you don't need to handle the login, Retool dose it for you.

You can restrict access to any specific group, or even user either by posing a limitation inside the query, (select the desired query, advance, Groups that can run this query).

Or you can hide any component on the app by using javascript:
{{ current_user.groups.some(i => i.name === 'Group Title Here') }}

For example:
image|300x73, 50%.97|300x73.97

If you're bothered with security, I recommend you'd do both.

1 Like

Well, I still need a login page with google auth.
I mean I cannot give users a URL which allows everyone to access the dashboard.
How can build such a page which integrates with Retool dashboard?

Well, I still need a login page with google auth.
I mean I cannot give users a URL which allows everyone to access the dashboard.

Just to clarify, the dashboard is an app by itself? or is it apart of a bigger app? You can give to an app for access to a specific group and no one else will be able to access it.

If it's inside another app, wither consider separating it (it will also help with performance), or you can have the entire dashboard in a container and then apply the methods that I mentioned in my answer to control access.

How can build such a page which integrates with Retool dashboard?

I haven't played with it, but there's a login component built into retool, I guess you can use it to integrate with google auth and have logic to limit access accordingly.

Apart from a web app

How to do it?
Like returning a 403 page if the user is lack of access permission?
I don't want to expose the dashboard URL to every user.

How to do it?
Like returning a 403 page if the user is lack of access permission?
I don't want to expose the dashboard URL to every user.

Go to Settings, Permissions, Edit the desired group, Apps.
Note that in order to have full control of the permissions settings, you need to create your own group.

But I want to use google firebase auth.
Is iframe a good idea for this case?

I don't think iframe is the way.
Like I said, you have the login components, try to fiddle with it, and see if that's get you somewhere, and yes, you can display an access denied massage to unauthorized users.

I totally agree with you.
The thing is I have a project with sign-in using google firebase auth.
How can I integrate my own project with retool if I don't use iframe?
Or can I use google firebase auth to build a sign-in page using retool?
Is there a tutorial on how to do it?
Thanks a lot for your help.