Read-Only User
Read-Only User has exclusive permissions to read information in the database, modify select data, and execute secure query reports to improve the security level of the application.
You can check the security level of the application under Global Settings or Admin.
Role Required: SDOrgAdmin/SDAdmin; Users with Create Query Report permissions.
Create Read-Only User
Create a user in the database. Refer to the following table for queries to create a user in the database:
External Postgres | MSSQL |
CREATE USER <username> WITH LOGIN PASSWORD <password>; GRANT CONNECT ON DATABASE <databaseName> TO <username>; GRANT USAGE ON SCHEMA public TO <username>; GRANT SELECT ON ALL TABLES IN SCHEMA public TO <username>; | USER <databaseName> CREATE LOGIN <username> WITH PASSWORD <password>; CREATE USER <username> FOR LOGIN <username>; GRANT USAGE ON SCHEMA public TO <username>; GRANT SELECT ON ALL TABLES IN SCHEMA public TO <username>; |
Grant relevant permissions for all tables.
Revoke access for tables that contain private or irrelevant data using the following query: REVOKE SELECT ON <tableName> FROM <username>. For example: REVOKE SELECT ON passwordtable FROM rouser;
Obtain the encrypted key of the password.
Go to [SupportCenter Plus Home]\bin in the command prompt.
Execute the file encrypt.bat.
Type the Read-Only User password and click Enter.
Copy the password encryption key displayed in the command prompt and store it in a secure location.
Go to {SCP_Home}/conf.
Open the database_params.conf file.
Configure the username in the relevant tag. For example: rodatasource.username=<username>.
Fetch the encrypted password key and configure it in the relevant tag. For example: rodatasource.password=<password>.
Update Database Flag
After the user is created, connect the application to the database and execute the following query. This will allow the Read-Only User to create secure query reports that do not fetch data from the restricted tables: UPDATE ReportModuleConfiguration SET PARAMVALUE = 'true' WHERE CATEGORY LIKE 'ROUser' AND PARAMETER LIKE 'Use_ROUser'
Restart the application for the changes to take effect.
Restore SupportCenter Plus
While restoring SupportCenter Plus from backup data,
If the database setup is not changed, update the database flag after restoring the data.
If the database or application setup is modified, create a Read-Only User again as mentioned above.
Restricted Tables for Read-Only User
AaaAccHttpSession
AaaPassword
RememberMeDetails
CustomFunctionDetails
AdminAuditHistoryJson
MobileAuthKey
CommonPassword
PasswordInfo
PasswordResetLink
BackupSchedule
Related Articles
User- Additional Fields
Based on your requirements, the default user record can be customized using different types of additional fields. This is useful to capture user-related additional information. To configure additional fields: 1. Go to Admin>>Users>>User-Additional ...Survey Reports (User Survey)
You can view reports for an individual request survey or multiple surveys. To view aggregate results of surveys, Go to Admin>>User Survey>>Survey Reports. Select from the following filters and click Apply Filter. Survey's publishing period Survey ...Execute Scripts in Business Rules
With Execute Script action in business rules, you can validate requests and update field values to automate request workflows. You can use scripts for validation of requests that involve complex conditions or requests that use third-party application ...Personalization
You can update your profile details by clicking the user icon in the upper right corner of the self-service portal. In the displayed pop-up, click the profile icon to upload a new picture. Note that the picture should not exceed 5 MB. To change the ...Tracking Requests
You can track the progress of all your requests under the Requests tab. Request List View The request list view gives an overview of all the requests along with their properties and SLA violations at a single glance. You can view requests based ...