Business processes often require WebApp Groups to be registered with more stringent security to the visibility and the data manipulation (CRUD) control of sensitive data. This article describes how to assign specific access to an entire WebApp and required construct pages using the WebApp Groups feature, creating a secured business environment.
You must be an Administrator of the Syniti Knowledge Platform to set a security profile, a Business Administrator (WebApp Designer) to configure security using WebApp Groups, or both. In some organizations, Administrator and Business Administrator could be different users.
Configure WebApp-Level Security
You can create any number of custom WebApp Groups depending on specific business requirements. When configuring WebApp Groups at the WebApp level, all the construct pages would have the same security permissions for users to view, add, edit, and delete data.
You can also set an security profile to restrict access to sensitive WebApps exclusively for the required users.
To create a WebApp Group:
On the Construct Preview’s home page, edit the required WebApp. The WebApp configuration page is displayed.
Access the WebApp Groups node in the Tree Navigation panel and select Add WebApp Group. A new WebApp Group option is displayed as the child node for WebApp Groups, and the Details Pane is updated with the WebApp Group fields.
In the Name field, enter a unique name for the WebApp Group.
Turn on/off the following CRUD control toggles as required:
Allow Select - Provides read access to view data on all pages in a WebApp
Allow Insert - Provides create access to add data on all pages in a WebApp
Allow Update - Provides update access to edit data on all pages in a WebApp
Allow Delete - Provides delete access to delete data from all pages in a WebApp
Note
Some construct pages and Grids/Properties Card might require different CRUD control access based on their security configuration that overrides the WebApp-Level security configuration.
From the Security Profile list, select the required security profile. WebApp Groups are now configured at the WebApp level for your WebApp.
Click Save.
If you want to assign WebApp Groups only to the required construct pages within a WebApp, you must configure security at the Page level. Refer to the Configure Page-Level Security section below for more information.
Configure Page-Level Security
Rights to view, add, edit or delete data on a page in a WebApp are defined by WebApp groups. Page rights are configured by granting WebApp groups access to CRUD control rights. WebApp Groups define access on a page-by-page basis. Page access rights override WebApp Group access rights.
For example, if the WebApp Group permits deletion on Page A at the WebApp level, but the page security restricts it at the Page level, users assigned to the WebApp Group are unable to delete records from Page A.
To configure security for construct pages in a WebApp Group:
Identify the required WebApp Group name in the WebApp Groups node.
Click More Options (…) next to the required WebApp Group name and select Add Page. A new Page option is displayed as the child node for your WebApp Group, and the Details Pane is updated with the WebApp Group Pages fields.
From the Page Name list, select a construct page.
Turn on/off the following CRUD control toggles as required:
Allow Select - Provides read access to view data on a page
Allow Insert - Provides create access to add data on a page
Allow Update - Provides update access to edit data on a page
Allow Delete - Provides delete access to delete data from a page
Click Save.
Note
You can also override access to required Grids/Forms on a page when configuring Grids/Forms. Refer to Configure Grid Display and Configure Form Display for more information.
Delete WebApp Group and WebApp Group Pages
All components of a WebApp use the same process to perform the delete action. This also applies to components used in configuring security using a WebApp Group and WebApp Group Pages.
To delete a component in a WebApp:
On the Construct Preview’s home page, edit the required WebApp. The WebApp configuration page is displayed.
Access the required component node in the Tree Navigation panel.
Select the required component and click More Options (…) next to your selected component node.
Select Delete.