Manage Entity Access By Microflow

Hi pros!! I have a question about creating a data permission management page for user roles in Mendix, which would be used by system administrators. Once these data permissions are set, each user role should only be able to add/modify data that they have permission to access. I understand that in Mendix projects, Entity Access permissions are set at the module role level. If I want to modify the Entity Access Rights for each module role using a microflow called from the management page, how can I do that? It seems like this data is not stored in the main Mendix database. Do you happen to know where this data is stored? Thank you for your help!
3 answers

In the properties of a microflow you have the setting Apply entity access. When this is set to true the access rights are checked for that user that executes this microflow. If this is set to false those access rights are not checked.



[EDIT] Only user roles on project level can be adjusted using microflows. You can not adjust in a microflow the module roles a project role has. That can only be done in the modeler.


Hi Evan,


On the runtime level, the data permission is applied according to the rules (Access rules tab of the Entity) modeled. You can’t change them “on-the-fly”.


I would not advise you to create another security layer that you use in data management. This is possible, but it requires you to set the security in the model less restrictive. Hence, when you have a very knowledgeable user, he could bypass it by interacting directly with the client API.


Until now, using the Access rules including XPath could always work, also when using data-driven applications. So, focus on that design. 


I could write o blog on it, how to do that. Could you share examples on what you would like to achieve?


Go Make It


Hi Evan, 


Were you able to achieve this?

I have a similar requirement: For a domain model I want to update security using microflow

Please let me know