Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Woohoo! Qlik Community has won “Best in Class Community” in the 2024 Khoros Kudos awards!
Announcements
Nov. 20th, Qlik Insider - Lakehouses: Driving the Future of Data & AI - PICK A SESSION
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Not applicable
‎2016-11-03 07:30 AM

Custom Rules for Streams and App not working

Hi,

I followed Qlik Sense Stream Management Security Rules and Exception Management - YouTube

and Need help on Streams 'n' Apps Access

after applying custom rules for streams and app, I am able to see stream and app window, but not able to see sheets inside the apps.

What could be the reason.

Regards, Nitin

3,491 Views
0 Likes
1 Solution

Accepted Solutions
Not applicable
‎2016-11-08 06:54 AM
Author

In response to

Nitin, this is the rule that's impacting your visibility on app objects.  Because you have set App_* it's only going to impact apps, not app objects.  Change it to App* or add App.Object_* to the Resource filter.

View solution in original post

2,648 Views
0 Likes
10 Replies
rittermd
Master
Master
‎2016-11-03 12:37 PM

Would really need to see the rules you created to answer.

2,648 Views
0 Likes
Michael_Tarallo
Employee
Employee
‎2016-11-03 05:27 PM

Hell Nitin - let me see if jog‌ can be of some assistance?

Jeff?

When applicable please mark the appropriate replies as CORRECT. This will help community members and Qlik Employees know which discussions have already been addressed and have a possible known solution. Please mark threads as HELPFUL if the provided solution is helpful to the problem, but does not necessarily solve the indicated problem. You can mark multiple threads as HELPFUL if you feel additional info is useful to others.

Regards,

Mike Tarallo

Qlik

Regards,
Mike Tarallo
Qlik
2,648 Views
0 Likes
Not applicable
‎2016-11-03 05:40 PM
Author

‌Nitin,

i agree with Mark that seeing the rules you have added would be helpful.  in absence of that a couple of things...

1. did you disable any rules that control app.object resources or have a resource set as app*?

2. App* in a resource will make the rule run against apps AND app objects.

3. for only apps, set resource to app_*

its been a while since i watched the video, but i figure what you are trying to implement is app level management and what has happened is the user has access to app but no sheets.

you may want to look at the Qlik Sense Governed Self Service  space on community and have a look at iportal and the governed self service configuration rules which include app level management.  Shortcut to gss rules here iPortal/gss_setup_guide.md at master · eapowertools/iPortal · GitHub.

like mtarallo stated, please mark help AND/OR answered if this response does the trick.

Cheers,

Jeff G

2,648 Views
shraddha_g
Partner - Master III
Partner - Master III
‎2016-11-03 11:23 PM

What is the custom rule you have created?

2,648 Views
0 Likes
Not applicable
‎2016-11-05 01:05 AM
Author

Hi,

Following are the details.

1. Custom Properties :

    1.1 AppLevelMgmt : Resource types:Apps, Users, Custom Property Values : Executive

    1.2 Group : Resource types: Streams, Users, Custom Property Values : Executive, Finance, Operations

2. Streams :

   2.1 Stream Name : Executive,  Group:Executive

3. Apps:

   3.1 App Name : Enquiries : Restricted App : Custom Property Assigned : Executive, Published to : Executive Stream

   3.2 App Name : Overtime : Unrestricted App : No Custom Property Assigned, Published to : Executive Stream

4. User:

   4.1. User1 : Custom Property Assigned : AppLevelMgmt:Executive, Group:Executive

   4.2. User2: Custom Property Assigned : Not Assigned AppLevelMgmt, Group:Executive,Operations

   4.3. User3: Custom Property Assigned : Not Assigned AppLevelMgmt, Group:Executive,Finance

5. Security Rules

5.1 Disabled Default rule for Streams(App) access as per video.

5.2 Create Custom rule for Stream Display: Resource type: Stream, Action :Read,Publish  Rule :((user.@Group=resource.@Group)), Context: Both hub and QMC

5.3. Create Custom rule for XYZ Company App Access Default Rule - Resource Filter : App*, Action: Read, Rule: (resource.resourcetype = "App" and resource.stream.HasPrivilege("read") and resource.@AppLevelMgmt.empty()) or ((resource.resourcetype = "App.Object" and resource.published ="true") and resource.app.stream.HasPrivilege("read")), Context: Both hub and QMC

5.4 Create Custom rule for XYZ Company App Access Exception Rule - Resource Filter : App*, Action: Read, Rule: resource.stream.HasPrivilege("read") and ((user.@AppLevelMgmt = resource.@AppLevelMgmt )), Context: Both hub and QMC

After applying above rules, Users are able to see their respective Apps, but when they open the open, they can't see Sheets inside the App.

Now I am going to follow Jeff's suggestion regarding iportal/gss rules and post once completed.

Regards, Nitin

Outcome :

2,648 Views
0 Likes
Not applicable
‎2016-11-05 01:06 AM
Author

In response to Michael_Tarallo

Sure, I will follow the guidelines.

2,648 Views
0 Likes
Not applicable
‎2016-11-05 01:26 AM
Author

Expected.

2,648 Views
0 Likes
Not applicable
‎2016-11-08 06:54 AM
Author

In response to

Nitin, this is the rule that's impacting your visibility on app objects.  Because you have set App_* it's only going to impact apps, not app objects.  Change it to App* or add App.Object_* to the Resource filter.

2,649 Views
0 Likes
shraddha_g
Partner - Master III
Partner - Master III
‎2016-11-08 06:57 AM

In response to

Jaffrey is correct.

App_ * will only refer to Apps and App* will consider App Objects and Apps

2,648 Views
0 Likes