Greetings!

I am setting-up a QSEoW environment with two nodes.  The idea is to use the CENTRAL node as a production node with all services running, and use the RIM node for reloads and development.

I want to restrict Professional users from even seeing the QVFs in their Personal area (Work and Published) when accessing the CENTRAL node for consumption through the default virtual proxy - so that they can't consume resources in the CENTRAL node for apps in development; as well as restricting anyone from seeing production apps in the RIM node. 

I already have another virtual proxy and load balancing rules set up to use the engine in the RIM node for development, so that when the users with Professional license use the /dev prefix they will end-up in the RIM node, and their Work apps as well as the "Create New App" button will be available, but the streams to which they have access on the consumption site will not be displayed - hence, they won't be able to open production apps in the development node.

The only thing that I have not been able to achieve so far is to not display the Work and Published pseudo folders when the users with Professional license access the CENTRAL node for consumption through the default virtual proxy.  I need to only display the streams and production apps to which these users have access (essentially, make the hub for consumption for users with Professional license behave the same as for users with Analyzer license).  The image below show what I don't want to be displayed to users with Professional licenses.

I don't want to show the Work and Published Folders

Does anyone have any idea about what security rules and attributes control the display of this area in the hub?

@Levi_Turner, @Sonja_Bauernfeind, @Andre_Sostizzo please advise.

Please tag my name, @diagonjope, so that I get a notification of your responses.

Cheers,

++José