Solved: Security Rule to allow users to reload published a... - Page 3 - Qlik Community

lucienorrin · ‎2017-07-05

I am trying to get a reload button working for Sense v3.2, I tried the following:

http://branch.qlik.com/#!/project/56728f52d1e497241ae69836

Create Reload button with Qlik Sense 3.0 - YouTube

Both work great for the app OWNER.

However we have a need to allow users to reload the app on demand.

After configuring the security rules according to the documentation, users still get an access denied error on reload with an incomplete visualization on the sheet.

Has anyone successfully been able to grant users permissions to reload published apps?

korsikov · ‎2020-04-23

you need create new rule.

But users can reload app and can edit load script

ken4runner · ‎2020-11-17

@marcos do you think you could set up a similar rule to make this work for one specific app, or for one specific stream? so that the reload button would work for that one app or for all the apps in the stream?

marcos · ‎2020-11-19

@ken4runner , i think that you can set up the rule easily with something like this:

Rule for a Stream:

(
resource.stream.name="STREAM Test Name"
)
and
(
((resource.resourcetype="App" and resource.stream.HasPrivilege("read")) or
(resource.resourcetype="App.Object" and resource.app.stream.HasPrivilege("read") and resource.objectType = "app_appscript"))
)

Rule for a specific APP:

(
resource.name="APP Test Name"
)
and
(
((resource.resourcetype="App" and resource.stream.HasPrivilege("read")) or
(resource.resourcetype="App.Object" and resource.app.stream.HasPrivilege("read") and resource.objectType = "app_appscript"))
)

I haven't tried it, but it should be something like this.

Ken_T · ‎2021-02-17

Has anyone noticed that this technique seems to give users access to view the load script of a published app in the HUB?

lucienorrin · ‎2021-03-31

@Ken_T Yes. we had to disable the rule and quit using the reload button because of some change Qlik made to the security rules. I couldn't find anything in the documentation and support "doesn't help with security rules", so we just had to redesign a bunch of our apps.

Basically the rule that was allowing users to use the reload button now also lets them edit published apps. This included editing the sheets and the reload script itself.

Ken_T · ‎2021-03-31

@lucienorrin same ! we have not found a workaround for this yet, either.

morenoju · ‎2021-05-13

I'm having the same issue.

If I defined a security rule with Resource filter: App.Object_*,App_*,DataConnection_* and I marked the checkboxes "Read" and "Update": all users can use the reload button, but they also get access to "Edit sheet".

If I uncheck "Update" the "Edit sheet" button disappears and the users can reload the app clicking the Reload button (good). However, they get an access denied error when the app tries to get saved, so the changes don't remain (bad!).

Did anybody find the way to allow users reload and save the app but without making the Edit sheet button available to them?

Ken_T · ‎2021-05-13

I am going to ask Qlik in a support ticket, but I am not sure if they will give any advice or assistance on this

morenoju · ‎2021-05-13

Sounds good, @Ken_T . Please let us know how it goes.

I'm afraid that the only way to allow tha app to be saved is to check "Update" in the actions of the resource filter and that doing so always enables the Edit button.

But maybe Qlik Support knows of a different approach to do it...

boricsk · ‎2021-06-03

Hello,

I'm new in QS and I would like ask that how can I apply above security rules? I didn't found in QS HUB.

Thanky for your help.

Security Rule to allow users to reload published apps