Unlock a world of possibilities! Login now and discover the exclusive benefits awaiting you.
Hi,
I created a section access which is based on a file I prepared:
I have the following issues:
Here is the script:
Star = '*';
section access;
UserPerms:
LOAD * inline [
ACCESS,USERID,PRODUCTGROUPID
ADMIN,*,*
ADMIN, INTERNAL\SA_SCHEDULER,*
];
Concatenate (UserPerms)
LOAD
ACCESS,
USERID,
PRODUCTGROUPID
FROM $(vPathFinalData)UsersPermissions.qvd]
(qvd);
section application;
ItemGroup:
LOAD ItmsGrpCod,
ItemGroupName,
ItmsGrpCod as PRODUCTGROUPID
FROM
$(vPathFinalData)ItemGroup.qvd]
(qvd);
What am I doing wrong???
Thanks!
It is necessary for some organizations and businesses to even restrict what the RootAdmin is allowed to view of data. That's why a RootAdmin has to be given explicit DATA-access in SECTION ACCESS even though a RootAdmin has unrestricted access to all resources (except data) on a Qlik Sense site.
I don't know if that will solve you problem but the correct syntax for star is:
Star is *;
Actually I think it IS your problem since the documentation says that if you don't specify STAR IS '*'; then STAR IS; is assumed meaning that star is not considered a wildcard:
Hi Petter,
I corrected as you suggested, Thanks!.
But why am I still getting the "access denied" message if I remove the line:
ADMIN,*,*
(I still didn't ask the users to try..)
It is necessary for some organizations and businesses to even restrict what the RootAdmin is allowed to view of data. That's why a RootAdmin has to be given explicit DATA-access in SECTION ACCESS even though a RootAdmin has unrestricted access to all resources (except data) on a Qlik Sense site.
Hi Petter,
After fixing the Star is, the user ZZZZ sees the data of user YYYY as well.
I guess I'm still missing something :-(..
Thanks!
I'll open a new thread for my other issue..
Hi petter-s
Would like your opinion about the behavior I described in my "correct answer":
Data reduction: user sees other user's data
Is the issue I described expected?
Thanks!