I wold be very surprised if row-level permissions were related to a cache issue. The SQL on the AR Server is going to append the permissions to the DB query vs. an AR object like Form or Active Link that has permission details contained in the Mid Tier cache.
Jason On Mon, Jul 22, 2019 at 8:33 AM Phil Murnane <phil.murn...@windward.com> wrote: > Hi Dave, > > The easiest way to prove it's not a cache issue is to > > 1. Stop tomcat on the mid-tier > 2. Delete the cache files in the .../webapps/arsys/cache/... folder > 3. Start tomcat > 4. Re-test > > I ran into something like this years ago when permissions changes to the > system weren't being honored by the mid-tier. > > HTH, > --Phil > > ------------------------------ > *From:* ARSList <arslist-boun...@arslist.org> on behalf of Dave Barber < > daddy.bar...@gmail.com> > *Sent:* Monday, July 22, 2019 8:50 AM > *To:* ARSList <arslist@arslist.org> > *Subject:* Re: Atrium and field 112 > > I'm really not sure - my main knowledge of field 112 is from an in-house > developed application where we lock down data. In 10 years of usage of > Atrium we've never had any need for locking anything down. > > The value that was in Base Element was : > ;<numeric related to the "customer company">;1000000000; > > I've amended the 1000000000 value to a new permissions group for a couple > of CIs, and a profile that doesnt have the new permissions group or any > form of Admin rights (other than Asset Viewer) can still find the CI in > searches. > > Have had issues with mid tier caching, but never experienced issues > related to caching and permissions - guidance welcome! > > On Mon, 22 Jul 2019 at 13:33, Phil Murnane <phil.murn...@windward.com> > wrote: > > Any chance that the symptom is due to a caching issue of some sort? > > ------------------------------ > *From:* ARSList <arslist-boun...@arslist.org> on behalf of Dave Barber < > daddy.bar...@gmail.com> > *Sent:* Monday, July 22, 2019 4:57 AM > *To:* ARSList <arslist@arslist.org> > *Subject:* Atrium and field 112 > > All, > > This is on ARS 9.1.02. > > We have a range of users making use of both Atrium and Change Management. > We have a range of CIs uploaded against a large number of compaies, and > users have always been given unrestricted access. > > A recent requirement has involved us wanting to restrict visibility of > some CIs to specific users. Multi tenancy would not be viable (as there > are hundreds of companies within our system), so I had thought that > replacing the value for "Unrestricted Access" in field 112 in Base Element > for the relevant CIs with another permissions group, and adding that > permissions group to the required users would have the desired effect. It > does not work - profiles without the new permissions group can still see > the "locked down" CIs. > > Has anyone else implemented anything along these lines? > > Regards > > Dave Barber > -- > ARSList mailing list > ARSList@arslist.org > https://mailman.rrr.se/cgi/listinfo/arslist > <https://nam01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmailman.rrr.se%2Fcgi%2Flistinfo%2Farslist&data=02%7C01%7Cphil.murnane%40windward.com%7C88b09ae2a3c94c0f200008d70ea33755%7C00e53c2d5e62446bae708d12703cdba3%7C1%7C0%7C636993966501422956&sdata=QC2O6vSU0En3SRRR8ySJ1CzE%2FRV%2BV5SrCmA1HCKXeFY%3D&reserved=0> > > -- > ARSList mailing list > ARSList@arslist.org > https://mailman.rrr.se/cgi/listinfo/arslist >
-- ARSList mailing list ARSList@arslist.org https://mailman.rrr.se/cgi/listinfo/arslist
