2 Replies Latest reply: May 26, 2017 9:42 AM by Aehman K RSS

    Security Rules & Data editor

    John Schmidt

      Hi,

       

      i have a security question concerning the data editor.

      I have a stream in which we publish apps to be tested by another developer.

      This developer is supposed to look into the data editor as well.

      We created two SecRules now to allow users with the custom property 'TEST' to look into all apps in a certail stream.

      The users are able to view the apps but i cant get it to work that they see the data editopr as well.

       

      My SecRules for the ressources 'App*,ContentLibrary_*,DataConnection_*' (read, update, delete):

      user.@Usergruppe="TEST"

      and

      (resource.resourcetype = "App" and resource.stream.HasPrivilege("read")) or ((resource.resourcetype = "App.Object" and resource.published ="true") and resource.app.stream.HasPrivilege("read"))

       

      Can somebody tell me what im doing wrong?