Security on MDS Integration
-
Thursday, July 29, 2010 6:54 AM
Hello,
I would like to know if it is possible to have a security policy on MDS integration. Explanation: having an entity which is limited in access rights (horizontally and/or vertically), and then a subscription view based on that entity, can I have, let's say, a SharePoint external list/content type based on that view, and have the restrictions for the same user propagated up to the SharePoint UI?
Marius
All Replies
-
Friday, July 30, 2010 4:23 AM The Web services API fully implements all user security. When an application makes an API request on behalf of an authenticated user, the response is trimmed according to that user's security permissions. For example, certain rows or columns may not be accessible or updateable. The subscription views are database views and do not enforce security. You could build a SharePoint or other UI that accesses data via the MDS Web services API to ensure user security enforcement. That is how the standard Master Data Manager UI works.
- Proposed As Answer by Val Lovicz Friday, July 30, 2010 4:49 AM
- Marked As Answer by Marius Zaharia Friday, July 30, 2010 7:00 AM
