Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
uzername
Contributor III
Contributor III
‎2017-01-23 08:39 PM

QlikSense Problem, work stream shared between users

Hi

I have a QlikSense 3.1 server with basic access control (Developer/Contributor/Consumer via custom properties/security rules).

I have two developers,

     Admin user: rootadmin ,    licensed, customProperty=Developer

     Dev user: no admin privs, licensed, customProperty=Developer

My problem is that any app developed by either of above shows up in the 'work' area of both. I assume each user should only be able to see his/her own work space, including admin. I'm not aware of any setting that allows/disallows users sharing work space

Thanks.

Mario

3,001 Views
0 Likes
1 Solution

Accepted Solutions
stvegerton
Creator III
Creator III
‎2017-01-24 08:51 PM

In response to uzername

Looks like the "my createapp rule". Try adding and resource.owner.name=user.name

I think you can also drop the !user.is.Anonymous()  since you're requiring user type.

And I don't think you need the FileRefrence_* filter.

View solution in original post

2,354 Views
0 Likes
6 Replies
lhr
Employee
Employee
‎2017-01-24 05:05 AM

have you got a security rule that grants access to unpublished apps based on the developer custom property?

2,354 Views
0 Likes
stvegerton
Creator III
Creator III
‎2017-01-24 08:42 AM

Go to the Audit screen in the QMC. Set target resource to Apps and a filter on one of your unpublished apps. Set environment = to hub. Hit the audit button. Click on any user other than yourself and click on associated rules. Or just double click on the "R" next to another users name. That will get you to the offending rule(s) that you need to fix. Perhaps by using syntax like resource.IsOwned() and resource.owner = user.

2,354 Views
0 Likes
Anonymous
Not applicable
‎2017-01-24 03:38 PM

It looks like your the custom security rule you created for the custom roles is causing the issue. Verify your custom rules and fix the issue from there.

2,354 Views
0 Likes
uzername
Contributor III
Contributor III
‎2017-01-24 08:14 PM
Author

In response to stvegerton

Thanks Steve. I followed permissions on R column, there is only two active rules (see below). I don't understand how they might change inherent behaviour for un-published apps (i.e. shared viewing). What am I missing?

exportAppData.JPG

createAppRUle.JPG

2,354 Views
0 Likes
stvegerton
Creator III
Creator III
‎2017-01-24 08:51 PM

In response to uzername

Looks like the "my createapp rule". Try adding and resource.owner.name=user.name

I think you can also drop the !user.is.Anonymous()  since you're requiring user type.

And I don't think you need the FileRefrence_* filter.

2,355 Views
0 Likes
uzername
Contributor III
Contributor III
‎2017-01-24 11:42 PM
Author

In response to stvegerton

Thanks, using resource.owner  instead of resource.isowned  fixed it,

2,354 Views
0 Likes