Hi all,
I unexpectedly reached the limit of my private users and urgently need more.
I’m in Europe time and it will be my afternoon before anyone in the US can wake up and help.
Anyone has any idea what I can do?
Thanks
Dvir
Which plan are you on?
If you upgrade your plan, you should immediately get more.
Another thing you can try is purging any inactive users by deleting their data via Settings → Data → Delete User Data. I’m aware that has worked in the past.
1 Like
Hi Darren, I’m the business plan. I’ll go ahead and try purging like you suggest and report back. Thanks!
Hey,
So, I tried purging as you suggested, but it didn’t help unfortunately.
For now, I set it as a public app with hidden visibility for emails outside my allowed domain. However I’m very concerned for privacy now. From what I understand, even if visibility is hidden, tech savvy people can still access the database. Is that correct?
Thank you,
Dvir
Public vs Private users has no impact on data security. All it does is restrict who can sign into your App (or not).
Once a user is signed in, they potentially have access to all data that has been downloaded, regardless of whether they are a public user or private user.
The thing that protects data and prevents unauthorised user access is Row Owners. Are you using Row Owners?
I’m not using Row Owners as this is a business matchmaking app, and data about people needs to be mutually visible. I use it usually inside an organization and so only people with that organizational email can log in.
Maybe there’s some way to find out what kind of data is being downloaded?
All data in all tables that aren’t protected by row owners will be downloaded, if those tables are referenced anywhere in your App.
2 Likes
@Darren_Murphy, I am still confused about the difference between private and public users. I have a situation where the suppliers (external company) and company staff both need to login in a setting where purchase orders are placed to supplier, they give confirmation on shipping goods and the company staff then receive the goods. What is the best way to give secure access to both groups of users?
As of now, I have selected Private with the option only users in the users table can access? is there any way to make this work using public access?
I want the Purchase Orders created by HO staff to be visible to both suppliers (only for the POs placed with that supplier) and the receiving staff at locations (only for their locations) - in this case, how do I use row owners? I am quite new to Glide - from what I have read so far, I understand only one email ID can be a row owner and that row can’t be accessed by other persons? What is the best way to set up something like this?
I am currently working on a project that will soon have a client portal where clients can manage their projects/orders. This is in addition to the staff portal where the staff work on the projects.
My thinking so far is that I will have to create a second app for the clients to use - it won’t require all the tables that the staff use. I would just link the tables that are relevant.
I would have a table of “clients” which would act as the users table in the client app. I would then apply row owners to the email address in the clients table so that each client sees only their own projects/orders. I don’t have row owners set up on the staff portal because all staff need to see multiple projects.
I haven’t tested this yet so can’t confirm if it works or is the right approach.
1 Like
That’s generally a good approach. Will each of your Clients be a single user, or could there be multiple users?
If multiple, then you might want to look at using roles as row owners. You’ll find that much easier to manage.
3 Likes
That is a great suggestion coupled with the mention of using roles as row owners - now I see how I could make this happen. Thank you so much @Darren_Murphy
1 Like
How is “Publicly accessible, but only users in the users table can sign-in” different from private access with the user in the user table? I have a situation we have around 500 data entry users who needs to enter and see the data for their locations, and trying to figure out whether we can get around without having to buy private user access for all these 500 users?
The difference is this:
- If Access to the App is Private, then users must sign in before they see anything at all. The first thing they see when they open the App is the sign in screen. If they don’t sign in then they can’t go any further. When Access is set to Private, then by definition all users are also Private.
- If Access to the App is set to Public, and sign in is made optional, but is restricted (by whatever method), then only those users that sign in will be considered private users. Those that simply browse without ever signing in are considered visitors. This sort of setup might be useful when you have some sort of public facing portal, but with a restricted area for members only.
When it comes to trying to figure out if your users will be considered private, the simple rule of thumb is:
- if you restrict who can sign into your App in any way, then anyone and everyone that does sign in will be counted as a private user
- if you assign a role to a signed in user, then that user becomes a private user - no matter what the rest of your privacy settings are.
4 Likes
beautiful and clarifies a lot - thank you so much Darren.