Solved: Security Rule to allow users to reload published a... - Page 5 - Qlik Community

lucienorrin · ‎2017-07-05

I am trying to get a reload button working for Sense v3.2, I tried the following:

http://branch.qlik.com/#!/project/56728f52d1e497241ae69836

Create Reload button with Qlik Sense 3.0 - YouTube

Both work great for the app OWNER.

However we have a need to allow users to reload the app on demand.

After configuring the security rules according to the documentation, users still get an access denied error on reload with an incomplete visualization on the sheet.

Has anyone successfully been able to grant users permissions to reload published apps?

Ken_T · ‎2022-09-21

@sdmech81 as I recall, we followed some of the set up described in this post on qlik garden https://developer.qlik.com/garden/5eb3c41379935d00114df863
so we had a 3 rules similar to what are described on that post.

security rule for user to read access for reloadtask*
security rule for user to read access for ExecutionResult* and executionsession* resource
security rule for user to read and ****update**** application

we found that if we selected UPDATE for the xReload_AppUpdate type of rule, this allowed non app owners
to see the load script. so we did not include update in the 3rd rule. We did get this working. The users do need to have read access to the data connections in order for the reload to work. We already had rules/custom properties set up for that so data connections could be shared by developers.

Enovapremier · ‎2023-02-16

@lucienorrin When I put in the conditions it states that "This condition cannot be displayed in the rule editor because its is too complex." How did you get around this error?

korsikov · ‎2023-02-16

There is no error.
there is explain why you can't your rule editor for this rule

Enovapremier · ‎2023-02-16

What do you suggest I put in I'm new to setting up Security Rules. Any suggestions would be appreciated. I was following the post answer example. Also, the Analyzer users still cannot reload data via button.

BoB_Qlik_Support · ‎2023-06-06

Hello @morenoju , Did you find the way to allow users reload and save the app but without making the Edit sheet button available to them ?? I contacted support but no specific reply from them

chandrasjr1 · ‎2023-09-20

Hi,

I don't want to use "App_*,App.Object_*" as it sounds like it could provide access to all the apps. I want to restrict it with only one App.

I tried "App.Object_UYEJEJEK1234J2J12J321J312J3123J21J12J312J213J123J" for resource filter option.

UYEJEJEK1234J2J12J321J312J3123J21J12J312J213J123J = Is the dummy ID. But I used actual ID of the app.

But it still didn't work if I don't make user as App owner. What might be still missing?

jchacko_rxsense · ‎2024-04-15

I tried using this rule but when I am reloading the app. I am getting the error message : "Something went wrong, try again later."

chandrasjr1 · ‎2024-04-15

Below is the one that worked me and I was able to restrict to only one App. replace user ID/email and as well as QLIK_APP_ID

((user.name="user1@domain.com" or user.name="user1@domain.com" ) and ((resource.resourcetype="App" and resource.id="Qlik_APP_ID" and resource.stream.HasPrivilege("read")) or

(resource.resourcetype="App.Object" and resource.app.stream.HasPrivilege("read") and resource.objectType = "app_appscript")))

Security Rule to allow users to reload published apps