I noticed recently that our local installation of this project links to dashboard change views from the list view page (i.e. /admin/django_sql_dashboard/dashboard/) even when users don't have access to them. Here's an example:

The user here doesn't have the permission to change dashboards (though they do have permission to view them) yet the slugs in the screenshot above link to admin change views (e.g. URLs like /admin/django_sql_dashboard/dashboard/5/change/). When the user clicks on these links, the view raises a PermissionDenied error, which results in a 403 that isn't very helpful.

It would be nice if either the link wasn't hyperlinked at all, or if it took the user to a read-only version of the change page or something.