Question

6
Replies
141
Views
AshwiniT0743 Member since 2016 1 post
Wells Fargo
Posted: October 18, 2019
Last activity: October 21, 2019
Closed

How to use "Available Privileges" settings for securing Section referred in Dynamic Layout?

HI,

Just wanted to check on the use "Available Privileges" setting while referring a section in Dynamic layout. From documentation it seems users who hold the privileges mentioned in this field can view the section in read only mode.

In my use case, I am trying to use this feature "Available Privileges" (View privileges) in the sections which will be used in user portal harness but there is no effect. Though "Update Privilege" seems to be working as expected and if user is not holding the privilege, system is making the section fields non editable.

My goal is to not show the section at all if user role does not hold the required privilege (or even a role) and I am reluctant to use "Visible When" setting and use HaveRole or HavePrivilege checks (in expression or when rule) for securing the UI as it sounds that securing UI through visible when is not a good practice so please advice if there are any better way of securing UI specially an individual section among multiple sections without use of visible when condition but instead using other OOTB security mechanisms.

Note- All the sections (including the one which need to be secured) are in Data-Portal class.

Thanks,

Pega Platform Security User Interface
Moderation Team has archived post
Share this page LinkedIn