Reltio Connect

 View Only
  • 1.  Read only Role for Users

    Reltio Partner
    Posted 06-18-2023 06:28

    Hi,

    What is the role that needs to be created or assigned so that user will not be able to perform any edits on the UI screen across all entity and entity relationship types.

    Assigned the following roles to the user and user was still able to make edits.

    ROLE_READ_ALL

    ROLE_UI_ALL_READONLY

    Please let me know what am I missing here.



    ------------------------------
    Karthik karthik
    PWC
    ------------------------------


  • 2.  RE: Read only Role for Users

    Founding Member
    Posted 06-18-2023 07:23

    Hi,

    you can create a custom role and manage permissions via metadata security.  



    ------------------------------
    Gowthamprabhu Sivaraj
    AstraZeneca
    ------------------------------



  • 3.  RE: Read only Role for Users

    Posted 06-19-2023 01:31

    Hi Karthik,

    Please find the below steps which i used for implementation regarding restricting access through Entity & Attributes level.

    Step 1 - Create Empty role through User Management console.

    Step 2 - As per the requirement list down whether user needs access to all entities, restricted entities, all attributes, restricted attributes.

    Step 3 - Post the below format in the url as mentioned here (https://{ENV}.reltio.com/reltio/permissions/{Tenant Name}/)

    -- Sample for Attribute level Access provisioning
    "uri": "configuration/entityTypes/{Entity_Name}/attributes/{Attribute_Name}",
            "permissions": [
                {
                    "role": "ROLE_CUSTOM_READ",
                    "access": [
                        "READ"
                    ]
                },
                {
                    "role": "ROLE_SUGGEST",
                    "access": [
                        "READ"
                    ]
                }
            ]
        },
    -- Sample for Entity level Access provisioning
        {
            "uri": "configuration/entityTypes/{Entity_Name}",
            "permissions": [
                {
                    "role": "ROLE_READ_PRODUCT",
                    "access": [
                        "READ"
                    ]
                }
            ]
        },

    Step 4 - In the above snippet, we have "access" block, where we can define what access needed to be given to the particular user.

    Let me know if this works.

    Thanks & Regards,



    ------------------------------
    Chetan P
    Lead MDM Specialist
    Freshworks
    Chennai
    ------------------------------



  • 4.  RE: Read only Role for Users

    Reltio Employee
    Posted 06-19-2023 12:18

    Hi Karthik, I think the documentation makes it pretty clear that a user with ROLE_UI_ALL will be able to do pretty much anything in the system.  https://docs.reltio.com/en/explore/embark-on-your-journey/what-to-know-before-you-set-off/security/understanding-authorization/working-with-system-roles/exploring-all-system-roles#role_ui_all-0

    remove it and leave the READONLY permission and you should get what you want.



    ------------------------------
    Gino Fortunato
    Senior Solution Engineer
    Reltio
    ------------------------------



  • 5.  RE: Read only Role for Users

    Reltio Employee
    Posted 06-20-2023 09:26

    Hi Karthik,

    We recommend you to use metadata configuration for this use case. Please read this documentation, https://docs.reltio.com/en/explore/embark-on-your-journey/what-to-know-before-you-set-off/security/understanding-authorization/working-with-system-roles/exploring-all-system-roles#role_ui_all_readonly-0



    ------------------------------
    Nagesh Lakinepally
    ------------------------------