Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
DavidFosterVF
Creator
Creator
‎2022-03-24 11:40 AM

QRS API is there a way of restricting certain end points?

Is there a way of restricting access to certain endpoints in the QRS API through a virtual proxy. We would like to be able to share a reduced QRS to supporting systems to allow them to get metadata and run tasks, but nothing else.

Anyone know a way of doing this? 

Labels (3)
Labels
286 Views
0 Likes
2 Solutions

Accepted Solutions
Francisco_Fernandez
Support
Support
‎2022-03-24 03:55 PM

Hello @DavidFosterVF ,

It's not possible to restrict access to specific endpoints, but feel free to create a feature request using ideation.

https://community.qlik.com/t5/Suggest-an-Idea/idb-p/qlik-ideas

Best regards,

Francisco

View solution in original post

260 Views
Levi_Turner
Employee
Employee
‎2022-03-28 08:29 AM

When you access the QRS, you have to be identified or authenticated. When accessing the QRS over a Virtual Proxy, you are authenticated via the method configured for the Virtual Proxy (Windows, Header, SAML, JWT, OIDC, etc). After authentication, any and all configured security rules for the site and the user will be applied. This means, out of the box, QRS access is already restricted. If the user can see metadata via the UI, they will be able to do so via QRS. If they can't via the UI, they will not via QRS.

View solution in original post

215 Views
2 Replies
Francisco_Fernandez
Support
Support
‎2022-03-24 03:55 PM

Hello @DavidFosterVF ,

It's not possible to restrict access to specific endpoints, but feel free to create a feature request using ideation.

https://community.qlik.com/t5/Suggest-an-Idea/idb-p/qlik-ideas

Best regards,

Francisco

261 Views
Levi_Turner
Employee
Employee
‎2022-03-28 08:29 AM

When you access the QRS, you have to be identified or authenticated. When accessing the QRS over a Virtual Proxy, you are authenticated via the method configured for the Virtual Proxy (Windows, Header, SAML, JWT, OIDC, etc). After authentication, any and all configured security rules for the site and the user will be applied. This means, out of the box, QRS access is already restricted. If the user can see metadata via the UI, they will be able to do so via QRS. If they can't via the UI, they will not via QRS.

216 Views