We use cookies to try and give you a better experience in Freshdesk.
You can learn more about what kind of cookies we use, why, and how from our Privacy policy. If you hate cookies, or are just on a diet, you can disable them altogether too. Just note that the Freshdesk service is pretty big on some cookies (we love the choco-chip ones), and some portions of Freshdesk may not work properly if you disable cookies.
We’ll also assume you agree to the way we use cookies and are ok with it as described in our Privacy policy, unless you choose to disable them altogether through your browser.
Hello,
Currently, an API user has unrestricted access across all workspaces, datasources, and related resources. While this setup provides flexibility, it also introduces potential risks. Specifically, when implementing a Task Executor button in a QlikSense app, there's a concern that a QlikSense developer could, either intentionally or inadvertently, trigger tasks in restricted workspaces due to misconfiguration.
Feature Request:
We propose the implementation of API users with limited access permissions. This would align API user permissions with those of standard users, restricting them to the workspaces and resources they are explicitly authorized to access.
Such a feature would enhance security by ensuring that API users can only perform actions within their designated scope, reducing the risk of unauthorized task execution.
Thank you for considering this enhancement.
KR,
Nathan
0 Votes
0 Comments
Login or Sign up to post a comment