Question
Is there a way to prevent non-admin from being able to select the ignore feature on an attribute?
Answer
As long as a user has permission to update an attribute value, the user can pin and ignore the attributes. The platform uses the same set of permission for these types of actions.
Alternatives
- Security can be set on entity/relationship type level or for individual attributes.
Example:
POST {ServiceURI}/permissions/{tenant}
Headers: Authorization: Bearer <Access-Token>, Content-Type: application/json
Body:
[
{
"uri":"configuration/entityTypes",
"permissions":[
{
"role": "API_USER",
"access":["READ"]
},
{
"role": "UI_USER",
"access":["READ"]
}
]
},
{
"uri":"configuration/entityTypes/HCP",
"permissions":[
{
"role": "API_USER",
"access":["CREATE", "READ", "UPDATE"]
}
]
}
]
- You can restrict some of the users from accessing or viewing certain attributes. You can configure role-based user-access to ensure that certain attributes and their values are hidden from certain users.
References
Comments
Please sign in to leave a comment.