Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Not applicable
‎2015-03-04 06:27 PM

User role to create bookmarks and stories in a published app

Hi

We are creating custom security rules by verifying this document. https://help.qlik.com/sense/en-US/online/index.html#../Subsystems/ManagementConsole/Content/ServerUs...

In this link it mentoned to create Developer, Contributor and Consumer role which we liked it. We want to extend rule for consumer. Right now consumer is allowed to view only but we want to extend it and have users in Consumer role create bookmarks, stories but not create sheets in the existing app ? Is that possible to write a rule.

App.Object_Story, App.Object_bookmark ? Are these availabke ?

Can you please let me know

Thanks

5,544 Views
0 Likes
7 Replies
korsikov
Partner - Specialist III
Partner - Specialist III
‎2015-03-05 02:59 AM

yeah! my favorite kind of questions.

create sec rule as my screenshot

Name

client can create all app object but not sheet

Resource Filer

App.Object_*

Condition

!resource.App.stream.Empty() and resource.App.HasPrivilege("read") and (resource.objectType = "userstate"  or resource.objectType = "story" or resource.objectType = "bookmark" or resource.objectType = "snapshot" or resource.objectType = "embeddedsnapshot" or resource.objectType = "hiddenbookmark") and !user.IsAnonymous() and  user.@usertype="Customer"

Action

Create

Rule1.png

2,884 Views
0 Likes
Not applicable
‎2015-03-05 12:26 PM
Author

In response to korsikov

Thanks for the reply. It worked for bookmarks and also for creating stories but snapshot icon is missing. Expanded bookmark and create bookmark icon appeared and also for stories.

Below is the header crumb screenshot

Thanks

2,884 Views
0 Likes
OmarBenSalem
MVP
MVP
‎2017-02-28 10:04 AM

In response to korsikov

Hi Alexander,

I'm currently trying to prevent all the users I have from editing or creating sheets in a published app !

Only the Administrator is able to do so;

Here's what I did :

I disabled a rule called: CreateAppObjectsPublishedApp

copied it and created a new rule :

filter : App.Object_*

create- update

rule:

!resource.App.stream.Empty() and resource.App.HasPrivilege("read") and (resource.objectType = "userstate" or resource.objectType = "sheet" or resource.objectType = "story" or resource.objectType = "bookmark" or resource.objectType = "snapshot" or resource.objectType = "embeddedsnapshot" or resource.objectType = "hiddenbookmark") and user.name="Administrator"

But nothing happens, all of the users still can edit and create sheets in published apps.

what am I missing?

2,884 Views
0 Likes
TKendrick20
Partner - Specialist
Partner - Specialist
‎2017-09-15 04:12 PM

In response to OmarBenSalem

Were you ever able to figure this out?

2,884 Views
OmarBenSalem
MVP
MVP
‎2017-09-15 04:30 PM

In response to TKendrick20

nope.

2,884 Views
0 Likes
korsikov
Partner - Specialist III
Partner - Specialist III
‎2017-09-16 01:27 PM

In response to OmarBenSalem

Hey there.

At me all perfectly works.

And yes, the button does not disappear. You can create a new sheet, but it disappears in a couple of seconds.

and in rule not create-update. Only create. Also try use custom property - it's more userfull and flexible

2,884 Views
0 Likes
TKendrick20
Partner - Specialist
Partner - Specialist
‎2017-09-27 08:12 PM

In response to OmarBenSalem

Hey, I found a solution! It was a bug all along!

My discussion: Allow Users to Create Stories, But Not Edit Charts

Discussion with solution: Allowing end users to create bookmarks on sheets

2,884 Views
0 Likes