Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Qlik Connect 2024! Seize endless possibilities! LEARN MORE
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
LanCao
Contributor
Contributor
‎2019-08-27 06:05 AM

Restrict access in applications management level

Hello there,

I  followed the video link https://www.youtube.com/watch?v=feSaaJZ7Jco and met with a problem.

In QMC for each stream, we have already applied specific rules like certain user with a name like 'ABC' can access this stream. And then I have set up Security Rules according to the Video (screenshot below). The problem right now is that  Users who should have access to the stream but don't have Customer Property 'AppLevelMgmt' can not see any APPs now. Even before I set any App with the 'AppLevelMgmt' property. 

(The only difference I have with the video is that I didn't set up the "@Group" Security Rule since it is already set differently in every stream)

Could anyone please help find the problem I have? Thanks in advance.

2.png

3.png

4.png

Lan

2,764 Views
0 Likes
1 Solution

Accepted Solutions
sasikumar
Partner - Creator
Partner - Creator
‎2019-09-06 03:04 AM

hi @LanCao

following steps to hide app from stream using Custom property

step 1 : Create Custom Property

clipboard_image_1.png

step 2 : Disable the Security rule, named as “Stream”

Step 3 : Creating security Rules to Hide app from stream

Rule 1:

Custom template : App access

Name: Custom-Stream Rule

Description: Allow users to see/read resources if they have read access to the stream it is published to.

Actions: Read

Resource filter: Edit the Resource filter App_* as App*

Context: Both in hub and QMC

Conditions:

(

            resource.resourcetype = "App"

            and resource.stream.HasPrivilege("read")

            and resource.@AppLevelRestrict.empty()

        )

        or

        (

            (

                resource.resourcetype = "App.Object"

                and resource.published = "true"

                and resource.objectType != "app_appscript"

            )

            and resource.app.stream.HasPrivilege("read")

        )

clipboard_image_2.png

Rule 2 : Custom template : App access

Name: Custom-Apps Exception Rule

Description: Allow users to see apps with exception properties if they also have the same exception properties at the user level.

Actions: Read

Resource filter: Edit the Resource filter App_* as App*

Conditions:

        resource.stream.hasprivilege("read") and ((user.@AppLevelRestrict=resource.@AppLevelRestrict))

Context: Both in hub and QMC

clipboard_image_3.png

  • Assign AppLevelRestrict custom property to Apps
  • Assign AppLevelRestrict custom property to Users

 

this is works for me

does it works for u?

Thanks,

Sasikumar

To help users find verified answers, please don't forget to use the "Accept as Solution" button on any posts that helped you resolve your problem or question.

View solution in original post

2,714 Views
0 Likes
3 Replies
LanCao
Contributor
Contributor
‎2019-08-30 09:38 AM
Author

I have checked several posts with similar questions. But couldn't yet find a solution for my case. Looking forward to someone's help. 🙂

2,741 Views
0 Likes
sasikumar
Partner - Creator
Partner - Creator
‎2019-09-06 03:04 AM

hi @LanCao

following steps to hide app from stream using Custom property

step 1 : Create Custom Property

clipboard_image_1.png

step 2 : Disable the Security rule, named as “Stream”

Step 3 : Creating security Rules to Hide app from stream

Rule 1:

Custom template : App access

Name: Custom-Stream Rule

Description: Allow users to see/read resources if they have read access to the stream it is published to.

Actions: Read

Resource filter: Edit the Resource filter App_* as App*

Context: Both in hub and QMC

Conditions:

(

            resource.resourcetype = "App"

            and resource.stream.HasPrivilege("read")

            and resource.@AppLevelRestrict.empty()

        )

        or

        (

            (

                resource.resourcetype = "App.Object"

                and resource.published = "true"

                and resource.objectType != "app_appscript"

            )

            and resource.app.stream.HasPrivilege("read")

        )

clipboard_image_2.png

Rule 2 : Custom template : App access

Name: Custom-Apps Exception Rule

Description: Allow users to see apps with exception properties if they also have the same exception properties at the user level.

Actions: Read

Resource filter: Edit the Resource filter App_* as App*

Conditions:

        resource.stream.hasprivilege("read") and ((user.@AppLevelRestrict=resource.@AppLevelRestrict))

Context: Both in hub and QMC

clipboard_image_3.png

  • Assign AppLevelRestrict custom property to Apps
  • Assign AppLevelRestrict custom property to Users

 

this is works for me

does it works for u?

Thanks,

Sasikumar

To help users find verified answers, please don't forget to use the "Accept as Solution" button on any posts that helped you resolve your problem or question.
2,715 Views
0 Likes
LanCao
Contributor
Contributor
‎2019-09-06 07:33 AM
Author

In response to sasikumar

Hello @sasikumar ,

 

Thanks a lot for your kind feedback.

I notice that if comparing to your method, I have missed one condition:  ( and resource.objectType != "app_appscript") in the Security_Rule. I can only test this out next week, will then write here my results.

Best,

 

Lan

 

 

2,704 Views
0 Likes