Hey,
So I need parts of my app to be viewable publicly and other parts only viewable by the signed in user. This will differ based on the signed in user role type.
Seems to be quite a few ways to achieve this, but what is the most secure way to do it?
My app is currently set to public with an optional sign in.
Cheers!
Using Row Owners applied to columns that contain an email or a role would be the most secure method. (When utilizing Roles with Row Owners, then you do have to configure a role column in your user profile configuration.) Rows with Row Owners applied will not be downloaded to the end userās device if they donāt own the data.
My understanding is that the app has to be set to private to use roles, so would this still apply to my use case, where parts of the app are public?
You can use Roles on a Public app.
The only difference with Roles, is that any users that have a role applied will be considered a Private user. That doesnāt mean that the app has to be a Private app.
Roles are simply a way to easily apply Row Owners to a group of users without needing to specify each individual email address.
Thanks Jeff - so this does not apply or am I missing something? Glide Docs ā¢ Roles (glideapps.com)
Edit - I think Iāve got it! Iād missed option to make the column āMake row ownerā! Makes more sense now!
I think that document is a little deceptive, and needs updating. The need for a āPrivate Planā was the case with an old pricing structure. With the new Teams pricing structure, there really isnāt such a thing Private or Public Plans. Now itās all one Team āPlanā that can have a variety of public or private apps. Now you have to pay attention if you have public or private USERS and what your user limits are for your plan.
Users are considered private users only if the entire app is set to Private, or a user is assigned a Role. You can however, have a mix of private and public users in the same app if only certain users have been assigned a role.
Iāll notify the Education team to update the documentation. Itās been a work in progress for them.
Ok so if the app is public, and someone signs in but dosent have a role assigned, they donāt count towards your private user count? And I can still restriction data visibility based on the email address using filters?
Sounds like I have alot more flexibility than I originally thought
Correct.
Row Owners will apply according. In any case, if a user does not have authority to a row under row ownership, then they will have have any kind of access to that row whatsoever.
I think from the sounds of it you should be fine. Just apply row owners where necessary and it should all work out.
Thanks thatās great, I can do a bit more than thought without needing to worry so much!
I just need to figure out how best the use the optional sign in for my use case!
Cheers Jeff, very helpful as always 
@Jeff_Hager - one more question springs to mind, can I still set a row owner column without setting a role owner and therefore not using my private user quota?
Yes, you can. If you donāt use the Role feature, then you will only be able to set columns that contain email addresses as a row owner columns.
Keep in mind that you can actually have multiple columns set as row owner columns if you need more than one person to be a row owner.
Ok - Iām still not 100% sure Iām setting this up correctly to ensure that data is secure.
I want an admin (who is my client) to be able to add users so Iāve set up the user table like this:
With the visibility conditions like this:
Leaving the role blank on the in-built user side menu tab, like this:
Bear in mind that the app is set to public, with sign in optional, so the idea is only my client will be able to see the user tab to add and delete users.
This works, but how secure is it, given Iām adding an extra screen for users and using filters.
Row Owners applies to the data in the table. You are showing one row, with your email in both columns. That means that when you are signed in with that email, you will have access to that row of data. If anybody else signs in with a different email, they will not have access to that row, because the email they used to sign in does not match the email in either of those two columns. Their device will only download a row if their email is contained within one of those two email columns.
Leaving the Role setting blank in the user profile configuration is fine. Like you said, it will prevent users from being designated as Private users.
As for tab visibilityā¦and any time you specifically use the user profile in visibility conditions or filtersā¦it will always look at the userās own specific row for that signed in user (in case you havenāt noticed, whenever a new user signs in for the first time, a user profile row is automatically generated for them).
So, when setting tab visibility, it is using the signed in userās row, and you can set conditions based on any column in that userās row. I think you went a little overkill on the conditions. You should be able to simply check if your Role column has Admin in it. That should be it. Any user that has Admin in the Role column (in their own user profile row) will see the Users tab. Only the admin userās row should have āAdminā populated in the Role column. For regular users, it should be left blank. You are just checking if the tab should be visible based on that signed in userās own user profile row.
This setup should be secure due to the use of Row Owners. The email column will contain different emails for each individual user, so each individual user will have access to their own row. Assuming the Added By column will always contain the adminās email, then the admin will have access to all user rows. The psuedo Role column will only be used to control visibility of the Userās tab. If the Admin is the only user that has that designated psuedo Role, they they will be the only one to see that tab.
I hope thatās clear.
It is clear indeed and thank you, this is what I expected, but the warning the system gives has made me question how secure it is, I wouldnāt want someone to hit F12 and be able to see the data!
Thanks again.
No problem.
Yep, Row Owners is the critical part here regarding data security. Just dial back your visibility conditions on the tab to just check the Role column value. Your setup looks good otherwise.
This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.
