Interface Acl<T>

interface Acl<T extends TableName> {
    $id: string | number | ExplicitKey<string>;
    $meta?: { installMethod?: "first install" | "demo" };
    active?: boolean;
    admin_overrides?: boolean;
    adminOverrides?: boolean;
    condition?: string;
    decision_type?: "allow" | "deny";
    decisionType?: "allow" | "deny";
    description?: string;
    field?: SystemColumns | "*" | keyof FullSchema<T>;
    local_or_existing?: "Local" | "Existing";
    localOrExisting?: "Local" | "Existing";
    name?: string;
    operation:
        | string & {}
        | "read"
        | "delete"
        | "create"
        | "execute"
        | "write"
        | "conditional_table_query_range"
        | "data_fabric"
        | "query_match"
        | "query_range"
        | "edit_task_relations"
        | "edit_ci_relations"
        | "save_as_template"
        | "add_to_list"
        | "report_on"
        | "list_edit"
        | "report_view"
        | "personalize_choices";
    protectionPolicy?: "read"
    | "protected";
    roles?: (string | Role)[];
    script?: string | ((current: any, ...dependencies: any[]) => boolean);
    security_attribute?:
        | string & {}
        | "user_is_authenticated"
        | "has_admin_role"
        | Record<"sys_security_attribute">;
    securityAttribute?:
        | string & {}
        | "user_is_authenticated"
        | "has_admin_role"
        | Record<"sys_security_attribute">;
    table?: T;
    type:
        | string & {}
        | "client_callable_flow_object"
        | "client_callable_script_include"
        | "processor"
        | "ui_page"
        | "graphql"
        | "rest_endpoint"
        | "ux_page"
        | "ux_route"
        | "pd_action"
        | "record"
        | "ux_data_broker";
}

Type Parameters

T extends TableName

Properties

$id

$id: string | number | ExplicitKey<string>

`Optional`$meta

$meta?: { installMethod?: "first install" | "demo" }

Type Declaration

OptionalinstallMethod?: "first install" | "demo"
Map a record to an output folder that loads only in specific circumstances. 'first install' - > 'unload', 'demo' -> 'unload.demo'

`Optional`active

active?: boolean

Whether the ACL rule is enabled or not

`Optional`admin_overrides

admin_overrides?: boolean

Deprecated

Whether users with admin role automatically pass the permissions check for this ACL rule

`Optional`adminOverrides

adminOverrides?: boolean

Whether users with admin role automatically pass the permissions check for this ACL rule

`Optional`condition

condition?: string

Filter query specifying fields and values that must be true for access

`Optional`decision_type

decision_type?: "allow" | "deny"

Deprecated

Whether the ACL should allow or deny access

`Optional`decisionType

decisionType?: "allow" | "deny"

Whether the ACL should allow or deny access

`Optional`description

description?: string

Description of the object or permissions this ACL rule secures

`Optional`field

field?: SystemColumns | "*" | keyof FullSchema<T>

Optional field within the table to secure, or '*' for all fields

`Optional`local_or_existing

local_or_existing?: "Local" | "Existing"

Deprecated

Type of security attribute: 'Local' for condition-based or 'Existing' to reference an attribute

`Optional`localOrExisting

localOrExisting?: "Local" | "Existing"

Type of security attribute: 'Local' for condition-based or 'Existing' to reference an attribute

`Optional`name

name?: string

Name of the resource being secured

operation

operation:
    | string & {}
    | "read"
    | "delete"
    | "create"
    | "execute"
    | "write"
    | "conditional_table_query_range"
    | "data_fabric"
    | "query_match"
    | "query_range"
    | "edit_task_relations"
    | "edit_ci_relations"
    | "save_as_template"
    | "add_to_list"
    | "report_on"
    | "list_edit"
    | "report_view"
    | "personalize_choices"

The operation this ACL rule secures

`Optional`protectionPolicy

protectionPolicy?: "read" | "protected"

Controls edit/view access for other developers

`Optional`roles

roles?: (string | Role)[]

Array of roles that have access to the object

`Optional`script

script?: string | ((current: any, ...dependencies: any[]) => boolean)

Script that defines the permissions required to access the object

`Optional`security_attribute

security_attribute?:
    | string & {}
    | "user_is_authenticated"
    | "has_admin_role"
    | Record<"sys_security_attribute">

Deprecated

Pre-defined conditions or security attributes to use for access control

`Optional`securityAttribute

securityAttribute?:
    | string & {}
    | "user_is_authenticated"
    | "has_admin_role"
    | Record<"sys_security_attribute">

Pre-defined conditions or security attributes to use for access control

`Optional`table

table?: T

The table this ACL rule applies to

type

type:
    | string & {}
    | "client_callable_flow_object"
    | "client_callable_script_include"
    | "processor"
    | "ui_page"
    | "graphql"
    | "rest_endpoint"
    | "ux_page"
    | "ux_route"
    | "pd_action"
    | "record"
    | "ux_data_broker"

Type of the named resource being secured

Interface Acl<T>

Type Parameters

Index

Properties

Properties

$id

`Optional`$meta

Type Declaration

`Optional`installMethod?: "first install" | "demo"

`Optional`active

`Optional`admin_overrides

Deprecated

`Optional`adminOverrides

`Optional`condition

`Optional`decision_type

Deprecated

`Optional`decisionType

`Optional`description

`Optional`field

`Optional`local_or_existing

Deprecated

`Optional`localOrExisting

`Optional`name

operation

`Optional`protectionPolicy

`Optional`roles

`Optional`script

`Optional`security_attribute

Deprecated

`Optional`securityAttribute

`Optional`table

type

Settings

On This Page

Interface Acl<T>

Type Parameters

Index

Properties

Properties

$id

Optional$meta

Type Declaration

OptionalinstallMethod?: "first install" | "demo"

Optionalactive

Optionaladmin_overrides

Deprecated

OptionaladminOverrides

Optionalcondition

Optionaldecision_type

Deprecated

OptionaldecisionType

Optionaldescription

Optionalfield

Optionallocal_or_existing

Deprecated

OptionallocalOrExisting

Optionalname

operation

OptionalprotectionPolicy

Optionalroles

Optionalscript

Optionalsecurity_attribute

Deprecated

OptionalsecurityAttribute

Optionaltable

type

Settings

On This Page

`Optional`$meta

`Optional`installMethod?: "first install" | "demo"

`Optional`active

`Optional`admin_overrides

`Optional`adminOverrides

`Optional`condition

`Optional`decision_type

`Optional`decisionType

`Optional`description

`Optional`field

`Optional`local_or_existing

`Optional`localOrExisting

`Optional`name

`Optional`protectionPolicy

`Optional`roles

`Optional`script

`Optional`security_attribute

`Optional`securityAttribute

`Optional`table