Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Announcements
July 15, NEW Customer Portal: Initial launch will improve how you submit Support Cases. IMPORTANT DETAILS
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
danielgargiulo
Partner - Creator
Partner - Creator
‎2017-05-01 07:02 AM

Qlik Sense Restrict Access to Expression Editor?

We are just trying to restrict the self-service functionality in Qlik Sense so a user can only create new charts and tables with the master measures and dimensions. The problem is in Edit mode a user has access to the ‘expression editor’ which gives access to all the fields in the data model, including hidden fields. Does anyone know a way to restrict this functionality?

2,664 Views
0 Likes
18 Replies
oli_hardy
Partner - Contributor II
Partner - Contributor II
‎2022-02-10 03:04 AM

Hi Daniel

Did you find a way to achieve this? Or how do you handle this with your customer in a self-service environment?

Regards Oliver

637 Views
0 Likes
Digvijay_Singh
MVP
MVP
‎2022-03-28 02:08 PM

We are also on the same boat and looking to hide certain fields completely even with no access to anywhere including expression editor in custom/private user sheets?

Any ideas please!

@tresesco  @rwunderlich  @stevedark 

631 Views
0 Likes
stevedark
Partner Ambassador/MVP
Partner Ambassador/MVP
‎2022-03-28 02:23 PM

In response to Digvijay_Singh

This is not something that I have tried to do. As far as I am aware even if you try and obfuscate the field name and hide it (with HidePrefix) a user will still be able to unlink a Master Measure and see the code behind it and work out what was going on.

Using variables (which are not so easy to get to without having an app in your work stream) can help obfuscate things a bit further, but someone with a bit of knowledge could find the content of a variable by having an expression to get the code of the variable in a string (e.g. '$(vObfuscatedCode)').

Hopefully someone else will have some ideas.

Steve

628 Views
0 Likes
Digvijay_Singh
MVP
MVP
‎2022-03-29 04:17 PM

In response to stevedark

Thanks! @stevedark for checking on this.

Thinking of using Hash functions to convert the IDs into the different unique values before they get loaded in the QVDs. AFAIK Autonumber is not helpful when a single field is sourced from multiple QVD creation apps. We are still thinking about all the options/limitations.

615 Views
0 Likes
tresesco
MVP
MVP
‎2022-03-30 09:39 AM

Check if section access OMIT could be applicable here. 

613 Views
0 Likes
Digvijay_Singh
MVP
MVP
‎2022-03-30 11:28 AM

Thanks @Tresesco or checking on this! These ID fields are used in the aggregation measures and acting as keys as well, as I understand OMIT takes the field out of the data model so I think that would impact the metrics and the associations. 

604 Views
0 Likes
tresesco
MVP
MVP
‎2022-03-31 01:23 AM

I didn't play around much with OMIT earlier. Now when try few things in qlikview, I see this doesn't work (visible as if no omit is there) for key fields. And also, the qlik help says that 'omitted fields are visible in the data model' which I could not replicate using a non-key field in omit structure. Quite surprising! or may be I need to do bit more rigorous testing on it (when I have more time).

As an alternative, I can think of another not-so-easy solution, again using section access; instead of hiding the field itself, hide all the values in it and show 'nothing' or any dummy value in it. However, this again might not work if you are actually using this field in calculations (i.e. - if you have a case where you want to show the sum of 100,200,300 =600 and don't want to show these values as field values).

595 Views
0 Likes
oli_hardy
Partner - Contributor II
Partner - Contributor II
‎2022-03-31 04:00 AM

In response to tresesco

To use OMIT to achieve the restriction as desired for the self-service functionality is not the right approach. With OMIT the field is not only not anymore visible to the user, but also the content is not anymore available to the users.

In my opinion there are no good workarounds available to fulfil this requirement of not showing the fields to all users with a professional license. 

It should be done on security rule level within the QMC. The ability to restrict the area of access to users only to the masterelements and the ability to restrict the "unlink" option of the masterelements should be possible. Or to restrict to go into the FX-Editor in general for some users. That something Qlik should provide.

589 Views
0 Likes
stevedark
Partner Ambassador/MVP
Partner Ambassador/MVP
‎2022-03-31 04:41 AM

In response to oli_hardy

Hi @oli_hardy 

That was my thoughts also, I was interested to see if anyone knew better. The level of flexibility in Sense Client Managed security is massive - but it doesn't go as far as this. Locking down to Master Items only, with no ability to edit measures or see data model would be very useful.

Maybe something to raise in the Ideation section of Community, and then post a link back here to get some traction for it?

Steve

587 Views