https://community.qlik.com/t5/App-Development/Section-access-based-on-session-attributes/m-p/895375#M12422 <HTML><HEAD></HEAD><BODY><P>According to Qlik's support the only information that can be used to implement "Section Access" in Qlik Sense currently is the user's name and group information.</P><P></P><P>We solved this by setting up a ODBC user directory in Qlik and reading the used restrictions from the user attributes table of this directory.</P></BODY></HTML> Mon, 27 Jul 2015 09:38:08 GMT daniel_peger 2015-07-27T09:38:08Z https://community.qlik.com/t5/App-Development/Section-access-based-on-session-attributes/m-p/895374#M12421 <HTML><HEAD></HEAD><BODY><P>I'm wondering if it is possible in Qlik Sense to use section access based on a user's session attributes.</P><P></P><P>We are currently using session attributes in Qlik Sense to grant user access to certain streams by attaching a corresponding security rule to the stream:</P><P></P><P style="padding-left: 30px;"><SPAN style="color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM>(user.environment.applicationId="my1stQlikApplication")</EM></SPAN></P><P><SPAN style="font-family: 'courier new', courier;"><BR /></SPAN></P><P><SPAN style="font-family: arial, helvetica, sans-serif;">By using the </SPAN><A href="http://help.qlik.com/sense/1.0/en-us/developer/#../Subsystems/Qlik_Sense_Proxy_Service_API/Content/QPS API/Proxy_REST_API_Session_Module_REST_API_Session_Add.htm%3FTocPath%3DQlik%2520Sense%2520Proxy%2520Service%2520API%7CSession%2520module%2520API%7CSession%7C_____1">QPS addSession method</A> one can attach arbitrary attributes to a user session:</P><P><SPAN style="; font-family: 'courier new', courier;"><EM><BR /></EM></SPAN></P><P style="padding-left: 30px;"><SPAN style="; color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM>{</EM></SPAN></P><P style="padding-left: 30px;"><SPAN style="; color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM>"UserDirectory": "QLIK",</EM></SPAN></P><P style="padding-left: 30px;"><SPAN style="; color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM>"UserId": "someUser",</EM></SPAN></P><P style="padding-left: 30px;"><SPAN style="; color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM>"Attributes": [ { "applicationId": "my1stQlikApplication" }, <SPAN style="; color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM>{ "applicationId": "<SPAN style="; color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM>my2ndQlikApplication</EM></SPAN>" }, ...</EM></SPAN> ],</EM></SPAN></P><P style="padding-left: 30px;"><SPAN style="; color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM>"SessionId": "random UUID"<BR />}</EM></SPAN></P><P><SPAN style="; color: #444444; font-size: 10.6666669845581px; font-family: 'Lucida Console', Monaco, monospace;"><EM><BR /></EM></SPAN>Given the above addSession-Request the user QLIK\someUser would be able to access a stream with the mentioned security rule.</P><P></P><P>Is it possible to evaluate these session attributes in an application's load script (i.e. to implement row level security using section access)? And if 'yes', how?</P></BODY></HTML> Thu, 07 May 2015 11:21:59 GMT https://community.qlik.com/t5/App-Development/Section-access-based-on-session-attributes/m-p/895374#M12421 daniel_peger 2015-05-07T11:21:59Z https://community.qlik.com/t5/App-Development/Section-access-based-on-session-attributes/m-p/895375#M12422 <HTML><HEAD></HEAD><BODY><P>According to Qlik's support the only information that can be used to implement "Section Access" in Qlik Sense currently is the user's name and group information.</P><P></P><P>We solved this by setting up a ODBC user directory in Qlik and reading the used restrictions from the user attributes table of this directory.</P></BODY></HTML> Mon, 27 Jul 2015 09:38:08 GMT https://community.qlik.com/t5/App-Development/Section-access-based-on-session-attributes/m-p/895375#M12422 daniel_peger 2015-07-27T09:38:08Z