Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
Join us at Qlik Connect for 3 magical days of learning, networking,and inspiration! REGISTER TODAY and save!
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
MNicolas
Contributor III
Contributor III
‎2020-06-23 05:48 AM

Security rules - All my sheets disapeared

Hi all,

I'm designing the security for my Qlik Sense serveur and i'm using this video :

https://www.youtube.com/watch?v=feSaaJZ7Jco

 

I created a Stream Level Custom Property and a App Level Custom property, and apply this Custom properties to my user

I see the corrects streams and applications, but I can't see any sheets on all my applications now...

 

Here are my rules (I disabled App default security rule)

// 1. I can see the streams where the streamlevel CustomProperty match the user CustomProperty

Stream* ((resource.@StreamLevel=user.@StreamLevel))

//2. I can see all apps in streams where i havent set CustomProperty

App* (resource.resourcetype = "App" and resource.stream.HasPrivilege("read") and resource.stream.@StreamLevel.empty()) or ((resource.resourcetype = "App.Object" and resource.published ="true" and resource.objectType != "app_appscript" and resource.objectType != "loadmodel") and resource.app.stream.HasPrivilege("read") and resource.stream.@StreamLevel.empty()) 

// 3. I can see the apps in streams where the applevel CustomProperty match the user CustomProperty

App*(resource.resourcetype = "App" and resource.stream.HasPrivilege("read") and resource.@AppsLevel=user.@AppsLevel) or ((resource.resourcetype = "App.Object" and resource.published ="true" and resource.objectType != "app_appscript" and resource.objectType != "loadmodel") and resource.app.stream.HasPrivilege("read") and resource.@AppsLevel=user.@AppsLevel) 

 

Thanks for your help 🙂

 

Labels (3)
Labels
782 Views
0 Likes
1 Solution

Accepted Solutions
rzenere_avvale
Partner - Specialist II
Partner - Specialist II
‎2020-07-29 04:21 AM

In response to MNicolas

Good morning @MNicolas ,

on Second and Third rule you are trying to ask Qlik to verify if the custom property @AppsLevel applied to the App.Object entity (sheets, stories, ...) has a value equal to the same custom property applied to the user.

rzenere_0-1596010688879.png

 

So far, you cannot apply custom properties on app objects...
I suggest to remove those highlighted rows from second and third rules. For regular users, visibility based on an applevel (as suggested by your custom property) is fine.
If you need to restrict visibility also on sheet level, then a different approach needs to be taken.

I hope this helps,
Riccardo 

View solution in original post

733 Views
3 Replies
MNicolas
Contributor III
Contributor III
‎2020-07-29 04:10 AM
Author

Any ideas ?

738 Views
0 Likes
rzenere_avvale
Partner - Specialist II
Partner - Specialist II
‎2020-07-29 04:21 AM

In response to MNicolas

Good morning @MNicolas ,

on Second and Third rule you are trying to ask Qlik to verify if the custom property @AppsLevel applied to the App.Object entity (sheets, stories, ...) has a value equal to the same custom property applied to the user.

rzenere_0-1596010688879.png

 

So far, you cannot apply custom properties on app objects...
I suggest to remove those highlighted rows from second and third rules. For regular users, visibility based on an applevel (as suggested by your custom property) is fine.
If you need to restrict visibility also on sheet level, then a different approach needs to be taken.

I hope this helps,
Riccardo 

734 Views
MNicolas
Contributor III
Contributor III
‎2020-08-17 08:35 AM
Author

Thanks for your response!

696 Views
0 Likes