https://community.qlik.com/t5/Management-Governance/Client-Managed-Building-a-Monitoring-App-for-User-Access-Streams/m-p/2539374#M32460 <P><SPAN>Hi&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/102209">@JHuis</a>,</SPAN></P><P><SPAN>Thank you for the suggestion. Using a Writeback table is definitely a best practice for new implementations, but unfortunately, it doesn't fit my current scenario.</SPAN></P><P>&nbsp;</P><P><SPAN>I am dealing with a legacy environment containing a vast amount of apps developed over the last 6 years in a completely unstructured way. The Section Access definitions vary wildly (Inline, SQL sources, QVD loads, etc.), and refactoring all these apps to use a unified Writeback table is not feasible at the moment.</SPAN></P><P>&nbsp;</P><P><SPAN>I am looking for a passive auditing solution—something that can verify 'Who has access to App X?' without modifying the app's script.&nbsp;</SPAN></P><P><SPAN>Since parsing the load script is difficult (due to Include files and variables), has anyone successfully used the Hub API to simulate/impersonate a user check?</SPAN></P> Wed, 17 Dec 2025 09:00:08 GMT biroulvizualizaredate 2025-12-17T09:00:08Z https://community.qlik.com/t5/Management-Governance/Client-Managed-Building-a-Monitoring-App-for-User-Access-Streams/m-p/2534836#M32319 <P>I’m trying to build a <STRONG>monitoring app</STRONG> that shows exactly which users have access to Qlik Sense apps—both at the <STRONG>stream level</STRONG> and within <STRONG>Section Access</STRONG> for data reduction.</P><P>So far, I’ve:</P><UL><LI>Extracted stream access permissions via QRS.</LI><LI>Used regex in the load script to detect if Section Access exists in an app.</LI></UL><P>Now I need to <STRONG>identify the actual users/groups defined in Section Access</STRONG>. Sometimes this is easy (INLINE tables in the script), but other times the data comes from external sources (SQL tables, QVDs, etc.), which makes it harder</P><P>1. Has anyone managed to do this in a practical way?</P><P>2. Which <STRONG>Qlik product or API</STRONG> should I use to extract the Section Access user list? Is it possible via <STRONG>Engine API (GetScript())</STRONG> only, or do I need something like <STRONG>qlik-cli</STRONG>, <STRONG>QRS</STRONG>, or a reload process?</P><P><BR />Environment: <STRONG>Qlik Sense Enterprise on Windows (May 2024)</STRONG>.<BR /><BR /></P><P>&nbsp;</P> Thu, 30 Oct 2025 14:22:30 GMT https://community.qlik.com/t5/Management-Governance/Client-Managed-Building-a-Monitoring-App-for-User-Access-Streams/m-p/2534836#M32319 biroulvizualizaredate 2025-10-30T14:22:30Z https://community.qlik.com/t5/Management-Governance/Client-Managed-Building-a-Monitoring-App-for-User-Access-Streams/m-p/2537079#M32412 <P>I used an Writeback table to create the section acces table. And then load the section acces tables inside the app. Then i connected an custom property to the app what section acces i am using.&nbsp;</P><P>&nbsp;</P><P>I hope this makes a little sense?&nbsp;</P> Mon, 24 Nov 2025 14:16:51 GMT https://community.qlik.com/t5/Management-Governance/Client-Managed-Building-a-Monitoring-App-for-User-Access-Streams/m-p/2537079#M32412 JHuis 2025-11-24T14:16:51Z https://community.qlik.com/t5/Management-Governance/Client-Managed-Building-a-Monitoring-App-for-User-Access-Streams/m-p/2539374#M32460 <P><SPAN>Hi&nbsp;<a href="https://community.qlik.com/t5/user/viewprofilepage/user-id/102209">@JHuis</a>,</SPAN></P><P><SPAN>Thank you for the suggestion. Using a Writeback table is definitely a best practice for new implementations, but unfortunately, it doesn't fit my current scenario.</SPAN></P><P>&nbsp;</P><P><SPAN>I am dealing with a legacy environment containing a vast amount of apps developed over the last 6 years in a completely unstructured way. The Section Access definitions vary wildly (Inline, SQL sources, QVD loads, etc.), and refactoring all these apps to use a unified Writeback table is not feasible at the moment.</SPAN></P><P>&nbsp;</P><P><SPAN>I am looking for a passive auditing solution—something that can verify 'Who has access to App X?' without modifying the app's script.&nbsp;</SPAN></P><P><SPAN>Since parsing the load script is difficult (due to Include files and variables), has anyone successfully used the Hub API to simulate/impersonate a user check?</SPAN></P> Wed, 17 Dec 2025 09:00:08 GMT https://community.qlik.com/t5/Management-Governance/Client-Managed-Building-a-Monitoring-App-for-User-Access-Streams/m-p/2539374#M32460 biroulvizualizaredate 2025-12-17T09:00:08Z