Skip to main content

This content is closed to future replies and is no longer being maintained or updated.
Links may no longer function. If you have a similar request, please write a new post.

Question

 Narayana Rao Konakalla (NarayanaRaoK17273185)
CGI

CGI
US
NarayanaRaoK17273185 Member since 2024 23 posts
CGI
Posted: Feb 25, 2018
Last activity: Feb 25, 2018
Posted: 25 Feb 2018 22:51 EST
Last activity: 25 Feb 2018 22:51 EST
Closed

Query on attribute based access control (ABAC) - from LSA course content

Hello, Can any of you please elaborate the following limitations of the ABAC authorization configuration?

  1. Access control policies defined on Data- classes are not enforced in search queries ( Search queries??? )
  2. Only read policies are enforced in custom SQL. (does this mean, update/delete using an RDB query would work even if RBAC config doesn't allow update/delete?)
  3. Advanced search queries (for example, search queries that reference specific properties such as pxObjClass:Work-MyProperty AND CustomerName:MyCorp) are not allowed when access control policies are defined on any Assign-, Data-, or Work- classes.

Thank you!

To see attachments, please log in.
Pega Academy

Related content:

Related content has not currently been identified for this post.

We'd prefer it if you saw us at our best.

Pega Collaboration Center has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice