Narayana Rao Konakalla (NARAYANA)

NARAYANA Member since 2010 23 posts
Posted: February 25, 2018
Last activity: February 25, 2018
Posted: 25 Feb 2018 22:51 EST
Last activity: 25 Feb 2018 22:51 EST

Query on attribute based access control (ABAC) - from LSA course content

Hello, Can any of you please elaborate the following limitations of the ABAC authorization configuration?

  1. Access control policies defined on Data- classes are not enforced in search queries ( Search queries??? )
  2. Only read policies are enforced in custom SQL. (does this mean, update/delete using an RDB query would work even if RBAC config doesn't allow update/delete?)
  3. Advanced search queries (for example, search queries that reference specific properties such as pxObjClass:Work-MyProperty AND CustomerName:MyCorp) are not allowed when access control policies are defined on any Assign-, Data-, or Work- classes.

Thank you!

Pega Academy
Moderation Team has archived post, This thread is closed to future replies. Content and links will no longer be updated. If you have the same/similar Question, please write a new Question.