how to remove application filter navigator
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-05-2017 11:13 AM
Hello There,
I have a specific group, or role, that needs to see/edit their own group work, but not see other lists. I created a business rule to block access for specific tables and that seems to work. The team can still use the filter navigator to show lists of things that I have not thought of like task.list, cmdb_ci.list and so on. How do I restrict access to certain tables.
Basically I would like to create a basic deny rule for a certain role. Then add allow rules above that.
Is that possible or how would you solve for this?
Thanks for your help,
Kelly
- Labels:
-
Scripting and Coding
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-05-2017 12:58 PM
I don't know of a way to deny access to all tables in one go, but when I need to limit access I do some combination of roles and ACLs. For instance:
1. Create a role for the group: group_role
2. Assign the role to the group.
3. Add the group_role to the relevant Application Menu.
This will work if the group does not have other roles and access to other tables according to its roles.
You might also have to edit ACLs that allow all users to read the data, (for example: cmdb_ci.list in my dev instance), where you will have to add in the condition something like !gs.hasRole('group_role') .
If you provide more details, maybe I can give a more specific answer.
harel
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-05-2017 05:08 PM
Thank you Herel.
That is what I am doing. The users in this group require the itil role because so many applications and modules use it.
Are there any other options?
Kindly,
Kelly
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
03-06-2017 01:34 PM
