This article describes an example how to set up security rule to achieve "Particular user can only see the Apps in particular stream"
It assumes below scenario in this example.
A User named "Alex" can only see the Apps in the Stream(ID "6d447e4b-18d7-4191-bd14-612254c6ad0f")
Note: This article assumes no other default or custom security rules is enabled in QMC.
To achieve this scenario, we create 3 rules.
1. A rule for the stream [Resource filter]
- A rule for the stream
- A rule for the app
- A rule for the app.object
((user.name="Alex")) 2. A rule for the app [Resource filter]
(resource.resourcetype = "App" and resource.stream.HasPrivilege("read")) 3. A rule for app.object [Resource filter]
((resource.objectType= "sheet" or resource.objectType= "bookmark" or resource.objectType="story") and resource.app.stream.HasPrivilege("read"))