I’ve been testing Universal Dashboard for the last 8 hours and I’m having trouble with the concept “How to access different systems without using a central service account”. The dashboard functions will always run in the context of the server, even when using authentication, which is not really the desired result.
So my idea is to publish the dashboard as a script module and start the application locally and using the client security context. For other services which require username and password (non AD), the password will be securely stored under the client user directory.
However, when starting the Dashboard it will always Publish on all IP addresses.
I would like to see a feature where you can start the Web Application as LocalhostOnly e.g. Start-UDDashboard -LocalhostOnly, Start-UDRestApi -LocalhostOnly. So all requests on the other IP Addresses are rejected/blocked. This would avoid anyone who knows my endpoints to run code as my security context.
Looking forward to your view on this matter.