When the GenAI connector executes a function/tool microflow, entity access is not enforced — regardless of whether "Apply Entity Access" is enabled on the microflow itself. The documented workaround of scoping XPath queries with $currentUser is inadequate: it only covers retrieval, not writes, it duplicates logic already declared in the domain model, and it silently breaks when an AgentAdmin wires up a tool microflow at runtime without understanding the implications.
The request:
Add an ApplyEntityAccess boolean to the Tools: Add Function to Request operation in GenAI Commons, and a corresponding setting in the AgentCommons agent builder UI. When enabled, the connector's internal execution loop should invoke the function microflow with entity access enforced.
Hi Bart,
thanks for your suggestion.
We are aware of this limitation and are investigating how this can be best solved.
We already had a few approaches tested, but all had major downsides, so we decided to not move forward with them.
We're considering your option and will hopefully find a solution to tackle this problem.
Best
Liam