Unlock a world of possibilities! Login now and discover the exclusive benefits awaiting you.
Hi
I have a QlikSense 3.1 server with basic access control (Developer/Contributor/Consumer via custom properties/security rules).
I have two developers,
Admin user: rootadmin , licensed, customProperty=Developer
Dev user: no admin privs, licensed, customProperty=Developer
My problem is that any app developed by either of above shows up in the 'work' area of both. I assume each user should only be able to see his/her own work space, including admin. I'm not aware of any setting that allows/disallows users sharing work space
Thanks.
Mario
Looks like the "my createapp rule". Try adding and resource.owner.name=user.name
I think you can also drop the !user.is.Anonymous() since you're requiring user type.
And I don't think you need the FileRefrence_* filter.
have you got a security rule that grants access to unpublished apps based on the developer custom property?
Go to the Audit screen in the QMC. Set target resource to Apps and a filter on one of your unpublished apps. Set environment = to hub. Hit the audit button. Click on any user other than yourself and click on associated rules. Or just double click on the "R" next to another users name. That will get you to the offending rule(s) that you need to fix. Perhaps by using syntax like resource.IsOwned() and resource.owner = user.
It looks like your the custom security rule you created for the custom roles is causing the issue. Verify your custom rules and fix the issue from there.
Thanks Steve. I followed permissions on R column, there is only two active rules (see below). I don't understand how they might change inherent behaviour for un-published apps (i.e. shared viewing). What am I missing?
Looks like the "my createapp rule". Try adding and resource.owner.name=user.name
I think you can also drop the !user.is.Anonymous() since you're requiring user type.
And I don't think you need the FileRefrence_* filter.
Thanks, using resource.owner instead of resource.isowned fixed it,