Solved: Re: help in security rule - Qlik Community

ali_hijazi · ‎2017-02-28

Hello

I'm working on Qlik sense 3.2

I need to accomplish the following:

I need to enable the Edit button on top right for only the users who got a specific value of a custom property

please advise

I can walk on water when it freezes

ali_hijazi · ‎2017-03-01

Hello Aeham

thank you for not giving up!!

I finally was able to accomplish this by doing the following; and I think is similar to what you did

I disabled the default Stream security rule; at this stage users can't see any stream
I created a custom property called Users_Access_Type which took several values depending on the streams that were available; the scope of this custom property is Stream, and User
Now each user who wants to access or see a specific stream then I gave that user the same value of the custom property as the stream to be accessed
at this stage users can see the streams in the hub but cannot see any app inside
I created another custom property and called it User_Access_To_Apps and as above I gave each app a value from this custom property and each user should have the same value as the app to be able to see it
and the same is applied for the sheets
finally I modified CreateAppObjectsPublishedApps and added the following conditions in the advanced editor:user.@brims_users_can_edit_content="Yes" and user.@brims_access_type=resource.app.@brims_access_type

and finally it works

but don't tell me security rules are straight forward

I can walk on water when it freezes

View solution in original post

OmarBenSalem · ‎2017-02-28

Try this;

There a security rule called CreateAppObjectsPublishedApp

disable it and create a new; UDR_EditApp : (UDR stands for User defined rule)

resource filter : App Object_*

basic: for the users with a specific custom property

ali_hijazi · ‎2017-02-28

thank you for your prompt reply

just a question on resource filter what does it stand for

I'm new to Qlik sense

I can walk on water when it freezes

OmarBenSalem · ‎2017-02-28

That means on what do you want your new rule to work on; in our case, we want to applicate a security rule on the app objects.

you can find a link in each security rule editting interface that will guide into a help for filter resources

juste click on a "?" icon you'll find somewhere in the buttom of the rule

The rule worked?

ali_hijazi · ‎2017-02-28

App Object_* or App.Object_*

I can walk on water when it freezes

OmarBenSalem · ‎2017-02-28

choose the template to wrk with, sense will fill the ressource filter for you depends on your selection:

ali_hijazi · ‎2017-02-28

please help in the syntax
i'm unable to continue!!

I can walk on water when it freezes

ali_hijazi · ‎2017-02-28

I leave the check boxes unchecked ?

How to link it to users with value YES of the custom property brims_user_can_edit_content?

I can walk on water when it freezes

MK9885 · ‎2017-02-28

Stream Level Management:

Select Stream Access as Name

Stream_* as resource

((user.name="YOURUSERNAME" and resource.@AppLevelManagement="App Level"))

AppLevelManagement is a Custom Property and App Level is Value for this property

App Level Management:

Disable the default Stream level and create a new security rule

((user.@Test=resource.@Test))

Here Test is a custom property having STREAM and USERS check to it.

Sheet Level Access

((user.name="YOURUSERNAMEHERE" and resource.objectType="sheet" and resource.name="YOURSHEETNAMEHERE"))

You can also add users to a group and create rules.

OmarBenSalem · ‎2017-02-28

First, have disabled the security rule CreateAppObjectsPublishedApp?

Once done,

-choose create rule from template (first line) and choose app access.

-Check create

user : @brims_users...

value : yes? depends on what you want? click on the blank in front of value, it will show you the existing values; hopes that helps