There is a "read only" security rule called "OwnerPublish" with the following description:
The owner of an app or a stream should be able to publish
As far as I understand, the owner of an app can't publish, if they don't have access the QMC. I have tried to create a user defined security role, but with the conditions below, the user will be able to see applications created by other users. Is there a way to add a condition so that my user is only viewing his own apps?