Reltio Connect

 View Only
  • 1.  User Role Management & Access Restriction based on User role

    Posted 12-01-2023 13:42

    Hi Everyone,
              I want to hide a particular entity from a specific user. In user role management, what services do I need to provide to the user role, and what services should I avoid providing?  Is it possible to hide a particular entity from a specific user?



    ------------------------------
    Sabarivasan
    OneTrust
    ------------------------------


  • 2.  RE: User Role Management & Access Restriction based on User role

    Reltio Employee
    Posted 12-04-2023 09:20

    Hi. You need to look at access controls from two different perspectives.

    On the one hand, you grant access to Reltio services and resources via roles and permissions under the User Management app in the Reltio Console. You can view these permissions as the ability to perform specific actions in the platform (like viewing entities, executing data loader jobs, applying workflow tasks, creating users, etc). However, it's not about filtering/displaying/showing specific data. Permissions in roles are all or nothing.

    On the other hand, you have Metadata Security and Data Security features (two different concepts but part of the same set of settings). With this, you can filter what entity types/attributes are displayed/hidden based on user roles.

    In this specific case (hide one specific entity from one specific user), I would do the following:

    • Create an empty role, e.g. "HIDE_DATA_<something>"
    • Assign the role to the user
    • Create a data security configuration with something like this:
    [  
      {
        "uri": "configuration/entityTypes/<entity_type>",
        "permissions": [
          {
            "role": "HIDE_DATA_<something>",
            "filter": "equals(attributes.<some_attribute>, '<some_value>')",
            "access": []
          }
        ]
      }
    ]

    This configuration will hide entity types that match the filter condition from the users with that role.

    I hope this helps!



    ------------------------------
    Sergio Abraham
    Principal Product Manager
    Reltio
    ------------------------------



  • 3.  RE: User Role Management & Access Restriction based on User role

    Reltio Employee
    Posted 12-04-2023 09:20

    Hi Sabarivasan,

    You will also need to configure metadata security for the entity. You can find documentation here https://docs.reltio.com/en/explore/embark-on-your-journey/what-to-know-before-you-set-off/security/understanding-authorization/role-based-security/metadata-security

    Thanks,



    ------------------------------
    Saurabh Agarwal
    ------------------------------