cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Did you get an answer that solved your problem? Please mark it as an Accepted Solution so others with the same problem can find the answer easily. X

List a User's, Group's, or Org's Permissions

Go to solution
EM_9923519
12-Amethyst
12-Amethyst
‎Jun 08, 2021 12:46 PM
‎Jun 08, 2021 12:46 PM

List a User's, Group's, or Org's Permissions

Hello, Is there a way to get that information programmatically, if so, could you please share sample script?

Labels:
0 Kudos
Notify Moderator
1 ACCEPTED SOLUTION

Accepted Solutions
yhan
17-Peridot
17-Peridot
(To:EM_9923519)
‎Jun 08, 2021 11:22 PM
‎Jun 08, 2021 11:22 PM

General configuration idea is -- 1. Use the GetEntityList service of EntityServices resource. It will return a list of entities the user has visibility to; 2. Create a datashape that is used for listing the result of permission; 3. Use the CheckPermissionForUser service of the SecurityService resource. Then sort out the query result to an infotable with the defined datashape.

Take an example of listing user's permission:

 

var entities = Resources["EntityServices"].GetEntityList({
	maxItems: undefined /* NUMBER */,
	nameMask: "*Thing" /* STRING */,
	type: "Thing" /* STRING */,
	tags: undefined /* TAGS */
});
// CreateInfoTableFromDataShape(infoTableName:STRING("InfoTable"), dataShapeName:STRING):INFOTABLE(CheckPermissionDataShape)
var result = Resources["InfoTableFunctions"].CreateInfoTableFromDataShape({
    infoTableName: "InfoTable",
    dataShapeName: "CheckPermissionDataShape"
});

var row = new Object();
for (var i=0;i<entities.length;i++){
 row.user=UserName;
 row.entity=entities[i].name;
 row.PropertyRead = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "PropertyRead" /* STRING */,
	user: UserName /* USERNAME */
	});
 row.PropertyWrite = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "PropertyWrite" /* STRING */,
	user: UserName /* USERNAME */
	});
 row.serviceInvoke = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "ServiceInvoke" /* STRING */,
	user: UserName /* USERNAME */
	});
 row.EventInvoke = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "EventInvoke" /* STRING */,
	user: UserName /* USERNAME */
	});
 row.EventSubscribe = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "EventInvoke" /* STRING */,
	user: UserName /* USERNAME */
	});
  result.AddRow(row);
}

 

The result looks like below:

6-9-2021 11-21-25 AM.jpg

View solution in original post

0 Kudos
Notify Moderator
3 REPLIES 3
yhan
17-Peridot
17-Peridot
(To:EM_9923519)
‎Jun 08, 2021 11:22 PM
‎Jun 08, 2021 11:22 PM

General configuration idea is -- 1. Use the GetEntityList service of EntityServices resource. It will return a list of entities the user has visibility to; 2. Create a datashape that is used for listing the result of permission; 3. Use the CheckPermissionForUser service of the SecurityService resource. Then sort out the query result to an infotable with the defined datashape.

Take an example of listing user's permission:

 

var entities = Resources["EntityServices"].GetEntityList({
	maxItems: undefined /* NUMBER */,
	nameMask: "*Thing" /* STRING */,
	type: "Thing" /* STRING */,
	tags: undefined /* TAGS */
});
// CreateInfoTableFromDataShape(infoTableName:STRING("InfoTable"), dataShapeName:STRING):INFOTABLE(CheckPermissionDataShape)
var result = Resources["InfoTableFunctions"].CreateInfoTableFromDataShape({
    infoTableName: "InfoTable",
    dataShapeName: "CheckPermissionDataShape"
});

var row = new Object();
for (var i=0;i<entities.length;i++){
 row.user=UserName;
 row.entity=entities[i].name;
 row.PropertyRead = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "PropertyRead" /* STRING */,
	user: UserName /* USERNAME */
	});
 row.PropertyWrite = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "PropertyWrite" /* STRING */,
	user: UserName /* USERNAME */
	});
 row.serviceInvoke = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "ServiceInvoke" /* STRING */,
	user: UserName /* USERNAME */
	});
 row.EventInvoke = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "EventInvoke" /* STRING */,
	user: UserName /* USERNAME */
	});
 row.EventSubscribe = Resources["SecurityServices"].CheckPermissionForUser({
	name: entities[i].name /* STRING */,
	type: "EventInvoke" /* STRING */,
	user: UserName /* USERNAME */
	});
  result.AddRow(row);
}

 

The result looks like below:

6-9-2021 11-21-25 AM.jpg

0 Kudos
Notify Moderator
abjain
13-Aquamarine
13-Aquamarine
(To:yhan)
‎Jun 10, 2021 02:00 AM
‎Jun 10, 2021 02:00 AM

@EM_9923519 : If the previous response answered your question, please mark it as the Accepted Solution for the benefit of others with the same question.

0 Kudos
Notify Moderator
EM_9923519
12-Amethyst
12-Amethyst
(To:yhan)
‎Jun 11, 2021 12:26 PM
‎Jun 11, 2021 12:26 PM

When using the code you share I get this error message

 

Error executing service myService. Message :: Type not found: [CheckPermissionDataShape] - See Script Error Log for more details.

 

Do I need to create this CheckPermissionDataShape? Is there a way to get the result as a plain infotable?

0 Kudos
Notify Moderator
Top Tags