Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
See what Drew Clarke has to say about the Qlik Talend Cloud launch! READ THE BLOG
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
eugabgomes
Contributor III
Contributor III
‎2022-01-04 09:06 AM

Disabling edit for published apps while allowing multiple users to duplicate, edit and publish.

Hi All,

We are in two BI Developers in my organization and I'd like us both to have access to edit each other's scripts, however not on published apps. After the app is published, I'd only allow the ability to duplicate, but after it's duplicated I'd like both to have the ability to see the scripts, even if the User is not the owner of the app.

I achieved this by granting us both ContentAdmin roles. However, by doing this, I've also allowed us the ability to edit published apps.

I was wondering, is it possible to disable the ability to edit published apps, while enabling the editing (with access to the scripts, not only the front-end) after the app is published if you're not the owner of the app?

Labels (1)
Labels
934 Views
0 Likes
1 Solution

Accepted Solutions
eugabgomes
Contributor III
Contributor III
‎2022-01-04 10:51 AM
Author

After some digging, I've managed to get to where I wanted.

I created two security rules based on the ContentAdmin security rule.

On the first security rule, It was an exact copy from ContentAdmin,  minus the Update and Delete actions, and giving a new name to the role (in this case, ContentAdminUnpublished)

eugabgomes_0-1641311321128.png

and now, a second special security rule, only for the Update and Delete actions for this role ContentAdminUnpublished, allowing delete and update only in unpublished apps:

 

eugabgomes_1-1641311410040.png

 

Conditions: 

((user.roles="ContentAdminUnpublished")) and !((resource.resourcetype = "App" and !resource.stream.Empty()) or (resource.resourcetype = "App.Object" and resource.published = "true"))

View solution in original post

881 Views
1 Reply
eugabgomes
Contributor III
Contributor III
‎2022-01-04 10:51 AM
Author

After some digging, I've managed to get to where I wanted.

I created two security rules based on the ContentAdmin security rule.

On the first security rule, It was an exact copy from ContentAdmin,  minus the Update and Delete actions, and giving a new name to the role (in this case, ContentAdminUnpublished)

eugabgomes_0-1641311321128.png

and now, a second special security rule, only for the Update and Delete actions for this role ContentAdminUnpublished, allowing delete and update only in unpublished apps:

 

eugabgomes_1-1641311410040.png

 

Conditions: 

((user.roles="ContentAdminUnpublished")) and !((resource.resourcetype = "App" and !resource.stream.Empty()) or (resource.resourcetype = "App.Object" and resource.published = "true"))

882 Views