We would like to deploy shiny apps to our Rstudio Connect server to make them available to our organization members. We would deploy a single app, embed it as an iframe, and use query string parameters to identify users' data access (as in https://shiny.rstudio.com/articles/client-data.html)
We currently do something very similar for Tableau using their model for Trusted Authentication (https://onlinehelp.tableau.com/current/server/en-us/trusted_auth.htm). This model prevents members from "URL spoofing" (manually changing the query string to access unauthorized data) because (referenced) steps 1-4 don't occur.
Is there an equivalent model for Rstudio Connect / Shiny Server that
- makes shiny apps embeddable
- disables "URL spoofing"?