https://community.qlik.com/t5/Management-Governance/Security-Rule-to-only-allow-certain-people-to-export-data-from/m-p/1584225#M13710 <P>Hi&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/292">@mwallman</a>&nbsp;- Yes you can use a security rule to achieve this.</P><P>You will have to disable the default "<STRONG>ExportAppData</STRONG><SPAN>" rule in QMC.</SPAN></P><P><SPAN>Then create a new rule with the following;</SPAN></P><P><STRONG>Resource</STRONG><SPAN><STRONG>&nbsp;Filter</STRONG> = APP_*</SPAN></P><P><SPAN><STRONG>Action</STRONG> = Export Data</SPAN></P><P><SPAN><STRONG>Conditions =</STRONG>&nbsp;<EM>resource.HasPrivilege("read") and (user.name="A")</EM></SPAN></P><DIV><BLOCKQUOTE><STRONG>Note</STRONG>: I would recommend&nbsp;that you use either group or custom property for these 5 users and built the rule using the custom property rather&nbsp;than using the user names. That way you never have to change the security rule to add user, instead you just assign&nbsp;the user a custom property.</BLOCKQUOTE></DIV><P><STRONG>EX:&nbsp;</STRONG>Create a custom property called "ExportData" with value "ExportAllowed". And then change the condition as per below</P><P><SPAN><STRONG>Conditions</STRONG>:&nbsp;</SPAN><EM>resource.HasPrivilege("read") and (user.@ExportData="ExportAllowed")</EM></P><P>Hope this solves your problem. Have a good day.</P> Thu, 23 May 2019 23:21:56 GMT s_kabir_rab 2019-05-23T23:21:56Z https://community.qlik.com/t5/Management-Governance/Security-Rule-to-only-allow-certain-people-to-export-data-from/m-p/1584018#M13706 <P>Hello all,</P><P>How can I write a good Security Rule to only allow certain people to export data from an app in a stream?</P><P>For example I have an app in the Everyone stream called Sales Insight.</P><P>There are 5,000 users for this app but I only want 5 people to be able to export data from this app who have read permissions to the app. The people are:</P><TABLE border="1"><TBODY><TR><TD>ID</TD><TD>Name</TD></TR><TR><TD>4455455</TD><TD>Joe Bloggs</TD></TR><TR><TD>5666767</TD><TD>Chris Jones</TD></TR><TR><TD>3467868</TD><TD>Pete Mack</TD></TR><TR><TD>7889845</TD><TD>Pat Post</TD></TR><TR><TD>9966745</TD><TD>Michelle Huggins</TD></TR></TBODY></TABLE> Thu, 23 May 2019 15:53:51 GMT https://community.qlik.com/t5/Management-Governance/Security-Rule-to-only-allow-certain-people-to-export-data-from/m-p/1584018#M13706 mwallman 2019-05-23T15:53:51Z https://community.qlik.com/t5/Management-Governance/Security-Rule-to-only-allow-certain-people-to-export-data-from/m-p/1584225#M13710 <P>Hi&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/292">@mwallman</a>&nbsp;- Yes you can use a security rule to achieve this.</P><P>You will have to disable the default "<STRONG>ExportAppData</STRONG><SPAN>" rule in QMC.</SPAN></P><P><SPAN>Then create a new rule with the following;</SPAN></P><P><STRONG>Resource</STRONG><SPAN><STRONG>&nbsp;Filter</STRONG> = APP_*</SPAN></P><P><SPAN><STRONG>Action</STRONG> = Export Data</SPAN></P><P><SPAN><STRONG>Conditions =</STRONG>&nbsp;<EM>resource.HasPrivilege("read") and (user.name="A")</EM></SPAN></P><DIV><BLOCKQUOTE><STRONG>Note</STRONG>: I would recommend&nbsp;that you use either group or custom property for these 5 users and built the rule using the custom property rather&nbsp;than using the user names. That way you never have to change the security rule to add user, instead you just assign&nbsp;the user a custom property.</BLOCKQUOTE></DIV><P><STRONG>EX:&nbsp;</STRONG>Create a custom property called "ExportData" with value "ExportAllowed". And then change the condition as per below</P><P><SPAN><STRONG>Conditions</STRONG>:&nbsp;</SPAN><EM>resource.HasPrivilege("read") and (user.@ExportData="ExportAllowed")</EM></P><P>Hope this solves your problem. Have a good day.</P> Thu, 23 May 2019 23:21:56 GMT https://community.qlik.com/t5/Management-Governance/Security-Rule-to-only-allow-certain-people-to-export-data-from/m-p/1584225#M13710 s_kabir_rab 2019-05-23T23:21:56Z