Do not input private or sensitive data. View Qlik Privacy & Cookie Policy.
Skip to main content

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Discover how organizations are unlocking new revenue streams: Watch here
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
RoyBatty
Contributor III
Contributor III
‎2024-01-29 09:15 AM

Exception Management - Problem with Security Rule Conditions

Hi,

I followed this video about setting "Exception Management" (starting from: 9:27) :

RoyBatty_0-1706537632315.gif

 

After I followed (implemented) everything the author of the video did, it works (now I can hide applications that are "sensitive" and I can allow specific users to access them) but there is the following problem: All applications are empty, there are no sheets.

The problem seems to be in Security Rule / Conditions:

(resource.resourcetype = "App" and resource.stream.HasPrivilege("read") and resource.@AppLevelMgmt.empty()) or ((resource.resourcetype = "App.Object" and resource.published ="true" and resource.objectType != "app_appscript" and resource.objectType != "loadmodel") and resource.app.stream.HasPrivilege("read"))

Let me explain briefly what this is:

Qlik has a Security Rule called "Stream":

RoyBatty_0-1706310398667.png

We disabled it and created a new Security Rule that is almost identical, we just added this to the conditions: and resource.@AppLevelMgmt.empty(). So, these are "conditions" of that new security rule:

(resource.resourcetype = "App" and resource.stream.HasPrivilege("read") and resource.@AppLevelMgmt.empty()) or ((resource.resourcetype = "App.Object" and resource.published ="true" and resource.objectType != "app_appscript" and resource.objectType != "loadmodel") and resource.app.stream.HasPrivilege("read"))

However, as mentioned, now all applications are empty (no sheets). I noticed that around 12:09 in the video it says "Oops - Minor Mistake - Here is the correct rule:" - but it's nowhere to be found, nor is there any link:

RoyBatty_1-1706310881030.png

Labels (2)
Labels
447 Views
0 Likes
1 Solution

Accepted Solutions
RoyBatty
Contributor III
Contributor III
‎2024-01-29 04:05 PM
Author

Solution from @Onyi_Nwabia-Robbins (fixed the issue):

For anyone who is still having issues with this, 
please make sure the two security rules that manage 
the app access are both for App* and NOT App_*. 

This will ensure the user has access to all app 
content and not just the app. 

I hope this helps. 

View solution in original post

415 Views
0 Likes
1 Reply
RoyBatty
Contributor III
Contributor III
‎2024-01-29 04:05 PM
Author

Solution from @Onyi_Nwabia-Robbins (fixed the issue):

For anyone who is still having issues with this, 
please make sure the two security rules that manage 
the app access are both for App* and NOT App_*. 

This will ensure the user has access to all app 
content and not just the app. 

I hope this helps. 
416 Views
0 Likes