Section access information showing unauthorised data to user
Article Number: 000055184 | Last Modified: 2018/11/21
In situations when section access information is generated in QVD files, please make sure that:
1. The QVD files are not shared between applications. However, if they are shared then make sure that the section access data applies to the apps that are sharing the QVD files. Test and confirm after each reload.
2. If reloading data from different data sources, please make sure that these data sources are verified and are generating the required section access data that is expected by the application.
There could be situations where one reload writes certain section access data into a QVD file but other apps that are consuming these QVDs may show unauthorised content to the users due to wrong data in the QVD files and consequently causing data breach issues.
In brief, two separate apps may be reloading, writing, reading and accessing common QVD files that contain the section access data. The QVD files may get overwritten with different data when reload takes place by first app. This would then result in wrong data display in the second app.
Keep section access QVD files separate and specific per app and per environment when QVDs are shared.