I'm pretty sure this isn't possible, but I've been asked to look into preventing users from exporting data from non-approved application objects. I considered disabling the ExportAppData rule and then creating a similar rule that takes a resource's approved state into account, but the Export/Export Data actions are only applicable to Apps, not App.Objects so I don't think this will work.
Can anyone suggest an alternate approach?
Thanks,
Steve