search

Security rules

Time to complete: 3 minutes

In most cases, end users need to share a published app for doing comments on. This will require a few Security Rules to create a new Role - Commenting Role. When assigned with Commenting Role, users will be able to do comments directly in published apps.

Just setup the below rules in Qlik Management Console and you are good to go.

circle-exclamation

If you have installed Kaptain, Komment will work without the security rule configuration.

circle-info

For unpublished apps Komment will work without the security rule configuration.

hashtag
Rule 1:

// CommentingRole – App
Resource Filter: App_* 
Actions: Update 
Condition: ((user.roles="CommentingRole") and resource.stream.HasPrivilege("read"))
circle-info

End user needs an ‘UPDATE’ permission on the app that needs to be commented (modified) via extension.

hashtag
Rule 2:

CommentingRole – AppObject
Resource Filter: App.Object_*
Actions: Read
Condition: ((user.roles="CommentingRole"))
circle-info

End user needs a security rule in appObject with ‘READ’ permission to load script, in order to trigger partial reload (Qlik Sense by default blocks script access in published apps).

hashtag
Rule 3:

circle-info

End user also requires all data connection with ‘READ’ permission that appears in the load script (all data connections used in current app, no matter it will be executed or not when doing partial reload - unfortunately it is how Qlik works).

circle-check

Last step is to assign ‘CommentingRole’ to users who should be able to comment within published apps. This is done in the QMC.

PreviousConfigurationNextMultiple Qlik Sense sites

Last updated