This is a beta feature.
Beta features should be considered "in development" and may not be fully supported or complete. Beta features are available as a preview for testing purposes and may be unstable. They should be used with caution in production environments.
Contact your Skedulo Customer Success representative to request access to this feature.
Skedulo platform customers can use record access policies to control user access to data records.
This feature is only available to Skedulo platform orgs.
Record access policies allow administrators to create filtering rules that get applied whenever data is requested via the web app, mobile app, or APIs. Record access policy rules filter the data that is returned for any given request.
Only users with the Administrator role, or with a role containing the Modify record access policies permission, are allowed to create and manage record access policies.
Users with the Administrator role are automatically exempt from any record access policies and will always see all data from a Skedulo instance.
This gives administrators flexible fine-grained control over the data that each user can see based on a set of rules and conditions.
For example, you might want to enforce region isolation of your Skedulo data, where users should only see data records (such as Jobs, Accounts, Resources, etc) that belong to the region the user is associated with.
A record access policy can be configured that looks at the region associated with each job, account, resource, or other objects to be returned for a given request and filters out those with a region that is not associated with the current user.
A single policy consists of multiple filter rules. Once a policy has been created, multiple rules can be added to it, each with its own filter.
Managing record access policies
To view and manage record access policies, navigate to Settings > Record access policies.
This page will list any existing record access policies that you have in your Skedulo instance. Each policy listed also shows whether or not it is enabled.
From this page, you can perform the following actions:
- Create a new policy.
- Delete policies.
Managing policies via the API
Refer to the Skedulo Lens API Reference Guide for information on how to manage policies and rules via the API.