We can restrict users menu links/items in navigation rule based on privileges. But client raised vulnerability issue stating ,users are able to access the portals/UI which we see when clicking on menu items ,which are not accessible to some users. But by changing URL / script in back-end they are accessing the UI . Is there any way to restrict users when they change URL parameters to access the items which they don't have access to.
This is a kind of security issue, which makes users access the functionalities which they don't have access to.
***Edited by Moderator Marissa to change type from Pega Academy to Product, update Product details and platform capability tags****