How to set Allow before deny for Portal groups?
I have now tried just about everything, but nothing works.
We have some customers that have authenticated there Portal with SAML.
They like to use the 'allowbeforedeny' opportunity.
A Geocortex site is shared with the entire Portal organization, except two feature layers.
Then the site is also shared with a portal group, where these two feature layers are allowed.
We have added the permision tag " <Permissions Inherit="True" Precedence="AllowBeforeDeny"> to all layers and services where should be used.
But users of this group can't see the featurelayers.
What are we doing wrong?
It works fine, if we share the site to a single user, where these two feature layers are allowed if we use the <add key="gcx.security.userAllowBeforeDeny" value="true" /> in the web.config.
Is there a web.config rule that will do the same for groups?
0
-
Hi Sebastian,
I have tried to reproduce this issue and could not - with an instance configured with AGOL or Portal auth (both tested), I am able to set Deny permissions for my organization and Allow permissions for a Group, when I add the AllowBeforeDeny setting it provides the expected results - members of the group can see the layers.
I notice that you have configured the Allow permissions at Feature Layer and Layer levels, instead of Map Services. Please try configuring these as Map Services, that might be the issue.
One other possibility - the CachedServiceData. Please use the "Reload" button on the thumbnail for the Site in the Site List to refresh after making the changes, then test again.
Thanks,
Aaron Oxley0 -
Hi Sebastian,
Did you ever find a fix for this?
Experiencing the same thing.
I just posted the same question and then found yours.
Dave
0
Bitte melden Sie sich an, um einen Kommentar zu hinterlassen.
Kommentare
2 Kommentare