Hi. You need to look at access controls from two different perspectives.
On the one hand, you grant access to Reltio services and resources via roles and permissions under the User Management app in the Reltio Console. You can view these permissions as the ability to perform specific actions in the platform (like viewing entities, executing data loader jobs, applying workflow tasks, creating users, etc). However, it's not about filtering/displaying/showing specific data. Permissions in roles are all or nothing.
On the other hand, you have Metadata Security and Data Security features (two different concepts but part of the same set of settings). With this, you can filter what entity types/attributes are displayed/hidden based on user roles.
In this specific case (hide one specific entity from one specific user), I would do the following:
- Create an empty role, e.g. "HIDE_DATA_<something>"
- Assign the role to the user
- Create a data security configuration with something like this:
[
{
"uri": "configuration/entityTypes/<entity_type>",
"permissions": [
{
"role": "HIDE_DATA_<something>",
"filter": "equals(attributes.<some_attribute>, '<some_value>')",
"access": []
}
]
}
]
This configuration will hide entity types that match the filter condition from the users with that role.
I hope this helps!
------------------------------
Sergio Abraham
Principal Product Manager
Reltio
------------------------------
Original Message:
Sent: 12-01-2023 00:43
From: Sabarivasan U
Subject: User Role Management & Access Restriction based on User role
Hi Everyone,
I want to hide a particular entity from a specific user. In user role management, what services do I need to provide to the user role, and what services should I avoid providing? Is it possible to hide a particular entity from a specific user?
------------------------------
Sabarivasan
OneTrust
------------------------------