I am newbie to Prometheus/Grafana set up. Recently installed kube-prometheus operator, learning and setting up dashboards and LDAP authentication. I see that we can create Grafana organization/roles and map those to LDAP groups. This will help to give 'Admin', 'Editor', and 'Viewer' access as mentioned in the documentation. Trying to understand how we can restrict access to Grafana dashboard(s) per namespace resources only, or is this approach not recommended? Meaning, each team who have access to respective namespace(s) will get to see what they're allowed, noting from other namespaces or nodes.
Thanks