Feature Requests

Let us know what feature you'd like to see!
What do the statuses mean?
Under Review = Expected to enter the queue
Up Next = Work starts in <60 days
Developing = Launching in <90 days (unless noted)

Description

Allow SSO configuration per organization for admins instead of just owner.

Currently, only the owner can configure the SSO options for each organization, this doesn't allow a team to manage this feature.

Add a "no access" admin type for SSO

Currently if a user is authenticated by the OIDC endpoint, then the user is allowed at minimum read-only access to the management portal. Given that the DNSFilter platform is acting as the authorisation service, we would like there to a "no-access" role that could be assigned as a default rather than allowing any authenticated parties snoop on everyone's web history.

More advanced user management

At this point the only roles are Admin and Ready Only. It would be great if there was a "custom" option where you can decide what a user can do. That way you can create accounts that only are allowed to edit the Whitelist, Blacklist and Time Schedules. Besides this it would be nice if you can assign accounts to Deployments, so they are only able to edit the policies that are applied on their network.

SSO RBAC - Support different default administrator roles depending on Azure SSO role

Role based access control is a major component of Single Sign-On and is one of it's major benefits. Currently DNS Filter only allows us to set one global default role for all incoming SSO users, where it would be helpful to be able to do it by Azure "app roles". The following is the customer side documentation we would expect to follow to configure this: https://learn.microsoft.com/en-us/entra/external-id/customers/how-to-use-app-roles-customers Ideally each DNS Filter role (Read-Only, Edit Policies Only, and Admin) would be assigned a "Value" in the below screenshot, so that we can configure groups in O365/Azure that correlate to each administrative role in DNS Filter

Add role/permission to edit and also apply policies (Policies Only extended)

DNS Filter currently offers a specific Policies Only role. This role is designed to have the ability to view and edit existing policies which are assigned to a site or making Allow list/Block list adjustments. An user with this role can also access to the Deployment > Sites menu to view the properties of sites within a specific organization. Its view shows all the fields grayed out except those under the “Policy” section. From those fields can be opened a drop-down menu that seems to allow to edit the policy in use. There is no save button, however. Is it possible to add a specific role or permission that has the ability to manage policies, but also to apply them without having access to any other administrative settings?

Billing role

Have the ability for our finance team to log in to DNSFilter, but have their role be restricted to only the finance aspects of the portal.

Limit client users to single Site in an Organization

It would be great to be able to limit client user admins to a single Site in their Organization (for Branch Managers, siloed oversight, etc). We have a client who is a troubled-youth counseling center, they want to be able to monitor the kids' usage after leaving the program and give their parents control over the filters & reports. Today, we have to split that person out into a different Organization to do this w/o giving the parent access to the whole counseling center's Org