The Dashboards Trusted Domains List doesn't apply to redirection warnings until 9.0.2303, which is why it didn't work before. But yeah, if you're not able to use a relative URL for linking within the platform (e.g. /app/search/<dashboardId) then it's treated like an external URL

Hi, is there also a solution for on-premise installations?

Hi @pschildein, thanks for your question. The Dashboards Trusted Domains list will be made available in the new on-premise release. Unfortunately I do not have release dates to share at this time. 

Release dates aside, are we talking about 9.0.5, 9.1 or 10.0?

This has been a user-experience wrecking problem for us since 9.0 came out.  These redirect warnings are feature my team never wanted.  We build our own dashboards, and we know exactly where they're redirecting to.  Our ability to quickly go down a dashboard table and Ctrl+Click (Cmd+Click) the rows that interest us into new tabs has been disrupted.

I can't believe Splunk would add such an obnoxious feature without also adding a way to bypass it at the same time.  Atlassian does this all the time.  Now Splunk, too?!

Hi,

As far as I experience with Splunk Enterprise V9.1.0 this is still not solved/available. Please let me know how to disable this "feature" 😞

Ashleyp

Hi @bsayatovic2, thank you for sharing your concerns. This was implemented for security reasons, but I can understand how it would be obnoxious. We are anticipating that the ability to disable this security feature will be available in 9.1, with all the caveats that release timing, release version numbers, and what's included in each version is subject to change. 

not sure we can mark this as a solution...buuut OK... My dashboard's going to be completely broken until then

@SmeetsS , if you have a moment could you clarify this? I'm unfamiliar with using custom javascript in Splunk.  I have a bunch of dashboards with this issue in the default launcher app.

I created a nopopup.js in etc/apps/launcher/appserver/static.  I then modified the dashboard statement in the source to:

<dashboard version="1.1" theme="dark" script="nopopup.js">

But this doesn't seem to work.  Am i missing something?

Hi,

Try this please :

<dashboard version="1.1" theme="dark" script="launcher:nopopup.js">

Nice workaround.
Thanks!

Works like a charm. 😎

I digged a little deeper.

Here is a "run everywhere" demo dashboard.

<dashboard version="1.1">
  <label>Link Redirect</label>
  <row>
    <panel>
      <table>
        <search>
          <query>
            | makeresults 
            | eval movie = "Breaking Bad", id = "0903747" 
            | append [| makeresults | eval movie = "Better Call Saul", id = "3032476"]
            | table movie, id
          </query>
        </search>
        <drilldown>
          <condition field="movie">
            <link target="_blank">http://www.imdb.com/title/tt$row.id$</link>
          </condition>
        </drilldown>        
      </table>
    </panel>
  </row>
</dashboard>

Click on the 1. movie.
Choose "Don't show this again" and Continue.

Now we find the following entry in session storage (Chrome Developer Tools -> Application -> Session Storage):
Key: http://www.imdb.com/title/tt0903747
Value: true

Logout from Splunk and login in the same tab keeps the data.

Closing the tab deletes the entry from the session storage.
You get the same problem, if you open a new splunk tab. The entry is missing for this session.

From Google Search: "Use the local Storage object if you want some data to be on the browser. If you want it on the server, then use cookies, and the session storage is used when you want to destroy the data whenever that specific tab gets closed"

Practically user has to klick "Don't show this again" for every table row, in every browser and for every new tab / session.
How can you explain this to the user?

Yes, some .conf to whitelist full domains or at least hostnames would be great.