Discussion board where members learn more about Qlik Sense Installation, Deployment and Management.
Тогда ждем вопросов еще
We expect additional questions from you today. better in the form of individual topics.
I've checked the "default" CreateAppObjectsPublishedApp rule and it contains the following code:
and (user.@role="RootAdmin" or user.@role="ContentAdmin"), so system admin roles are using @ as well.
Could you please comment on that?
Спасибо, надеюсь на Ваши советы:
Few initial questions (seems to be related to Ruben's post, so I am keeping them here):
1. Why do we need a Custom security rule if we do have "default" one (CreateAppObjectsPublishedApp):
It contains the condition for resource.objectType = "sheet", and is seems to allow it's creation for (user.@role="RootAdmin" or user.@role="ContentAdmin") only.
Did not work in my case. All users, who were not set as Admins were able to create a new sheet and other objects
2. I've created my custom rule in order to restrict users from creating the new sheet in the specific stream of Published apps only using the following:
App_*, App.stream.name="Brand #1".
I've left the [App_*] there initially.
Does this mean that it applies to all Apps and ignores Apps located in "Brand #1" stream? It looks like it based on my testing...
1. Order of rules execution: How QS is handling "similar" rules - applicable to the same resource, for example? Is it executing the system rules first and custom later?
Or they are excluding each other. Just trying to understand why we need to disable a "default" rule when we are creating a custom one?
Appreciate your help. Looking forward to your reply.
Hi Vladimir, in a recently installed server, the default rule looks like this:
In your post on 29-sep-2015 22:32 in this thread looks like you changed the rule.
Meanwhile the ContentAdmin rule look like this:
This is the way Sense server uses admin roles
One more (kind of on-topic question): Could you please comment on the following post:
Unable to allow a "Duplicate" option