3 Replies Latest reply: Apr 6, 2017 7:07 AM by Andrea Gigliotti RSS

    Security rule for disable and enable app options

    Prasanta Kumar
    Prasanta Kumar Aug 5, 2016 6:56 AM

      hi,

       

      is it possible to disable or enable some of the below options in qlik sense for a particular app using security rule for a AD group users.

       

      bookmark creation - enable

      Sheet duplicate /edit -disable

      take snapshot - enable

      snapshot library -enable

      export data - enable

       

      I tried with below conditions in security rule for app.Object_appname , but it completely disable all the above option.

       

      !resource.App.stream.Empty() and resource.App.HasPrivilege("read") and (resource.objectType = "userstate" or resource.objectType = "sheet" or resource.objectType = "story" or resource.objectType = "bookmark" or resource.objectType = "snapshot" or resource.objectType = "embeddedsnapshot" or resource.objectType = "hiddenbookmark") and !(user.group="TEAMQLIK1" or user.group="TEAMQLIK2")

       

       

       

      can you please advise what need to be modified in above condition.

       

       

      thanks

      Prasanta

        • Re: Security rule for disable and enable app options
          Mark Ritter
          Mark Ritter Aug 5, 2016 8:21 AM (in response to Prasanta Kumar)

          This is the rule I am using.  The group QlikConsumer can not add sheets.  But they can do stories, bookmarks, etc.  Everyone else can do everything.  Let me know if this helps any.

           

          !resource.App.stream.Empty()

                  and resource.App.HasPrivilege("read")

                  and (  

                      resource.objectType = "userstate"

                      or (

                          resource.objectType = "sheet"

                          and user.group != "QlikConsumer"

                         )

                      or resource.objectType = "story"

                      or resource.objectType = "bookmark"

                      or resource.objectType = "snapshot"

                      or resource.objectType = "embeddedsnapshot"

                      or resource.objectType = "hiddenbookmark"

                      )

                  and !user.IsAnonymous()

          • Re: Security rule for disable and enable app options
            Andrea Gigliotti
            Andrea Gigliotti Apr 6, 2017 7:07 AM (in response to Prasanta Kumar)

            Hello,

            Please take a look at my thread here Qlik Sense security rule problem

             

            Can you help me ?

             

            Many thanks.

             

            BR

            Andrea