Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Live today at 11 AM ET. Get your questions about Qlik Connect answered, or just listen in. SIGN UP NOW
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Not applicable
‎2015-08-13 04:29 PM

Bug with User Types ?

Has anyone experienced this?  I believe it to be a bug.

In the help file it describes how to create user types and then apply security rules to them.  For Example, I created one called developer and this type was the only one I allowed to create an Application, (I disabled the default create app rule and created a new one).  I allocated 1 token to the user I assigned this type.  I have a stream called, Sales, (I assigned 1 Token to this stream), I set the security on the stream to only Read and assigned the AD Group called Sales to it.  In the Sales AD group is a user called, User, and they do not have a Token assigned to them but since the Stream Sales has one assigned, this user will be able to access the stream.  However, this user was not assigned a User Type and once in the stream they should not be able to see the My Work area or be able to create an app but they can.  Qlik is allowing them full access.  Now, if I modify the security rule to exclude user without a type, i.e. ((user.@UserTypes!="")) it will not wok in conjunction with including the user type developer, ie ((user.@UserTypes="Developer")). Even if I use the AND condition or the OR condition is fails to render the desired results.

I would have expected Sense to not allow the user without a user type to be able to create an app since I originally built the rule that user type developers are the only users who can (outside of Admins).

Any thoughts or experience with this?  Am I missing something?

Kind Regards,

Sean

338 Views
0 Likes
2 Replies
korsikov
Partner - Specialist III
Partner - Specialist III
‎2015-08-17 03:42 AM

Use the audit to the user and that stream to determine what other rules affect the granting of access.

136 Views
0 Likes
Not applicable
‎2015-08-17 08:49 AM
Author

In response to korsikov

Thanks for the tip, however, there are no other conflicting rules. If I take my user, and disable the custom property user type of User, they get full access and the audit of the rules shows the same as when they have the custom property user type applied. So it looks like a bug.

136 Views
0 Likes