web
You’re offline. This is a read only version of the page.
close
Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Apps / Controlling Record Acc...
Power Apps
Unanswered

Controlling Record Access by App

(0) ShareShare
ReportReport
Posted on by CH-24102312-0

Hi, a hypothetical question!

 

There are 2 similar apps using the same team-owned DV tables.  Each app has it's own Security Group

 

A user should only be able to access records created by the app they are using.  Is that possible, even if that user is a member of both Security Groups?

 

Thanks in advance

 

 

Categories:
Governance & administering
I have the same question (0)
  • ChrisPiasecki Profile Picture
    ChrisPiasecki 6,422 Most Valuable Professional on at

    Hi @ChrisHarper,

     

    I think you mean each app has a Security Role assigned to it, not Security Group.

     

    Dataverse security is based on record ownership. The most common approach is, to use Business Units or Owner Teams to limit access between different sets of users. Then ensure the Security Role privileges are appropriately scoped at the business unit or team/user level based on which approach you decide.

     

    Note that a user can only belong to a single business unit, but can be part of multiple owner teams.

     

    ---
    Please click Accept as Solution if my post answered your question. This will help others find solutions to similar questions. If you like my post and/or find it helpful, please consider giving it a Thumbs Up.

  • CH-24102312-0 Profile Picture
    CH-24102312-0 on at

    Hi @ChrisPiasecki, thanks for your reply

     

    As the apps are performing very simlar activities on the same kind of data, both their Security Roles would be the same, or at least have the same priviledges.  Each app would have it's own Security Group controlling who can access each app.  I believe that a Security Group is a particular type of Team

     

    There would be a small number of people who can access both apps and therefore be in both Security Groups.  Where this is the case, I'd like the user to only see the records created by the app they are currently using.  If the records are Team or Business Unit owned, that would seem to work for those in a single team but I'm not sure if they were in both Teams / Security Groups?  As you point out, a User can only be in one Business Unit, so that wouldn't be a solution

     

    I'm curious to know if there is a workable solution 

  • CH-24102312-0 Profile Picture
    CH-24102312-0 on at

    I realise this could be addressed by adding a column and recording which app is creating the record, and then filtering the records before displaying in the Canvas App.  I'm just curious to know if there is a better solution using Dataverse built in security

  • CH-24102312-0 Profile Picture
    CH-24102312-0 on at

    Having looked into this further, I don't think it's possible just using the Dataverse security features.  Aligning apps with either Business Units, Teams or Security Roles, a user could either be restricted to a single app (which wouldn't work as users need to access multiple apps) or, due to cummulative priviledges, they would see all records irrespective of whichever app has created the record

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities
Season of Giving Solutions is Here!
Explore Copilot Studio Forums, Blogs & Galleries!

Quick Links

Forum hierarchy changes are complete!

In our never-ending quest to improve we are simplifying the forum hierarchy…

Ajay Kumar Gannamaneni – Community Spotlight

We are honored to recognize Ajay Kumar Gannamaneni as our Community Spotlight for December…

Congratulations to the November Top 10 Community Leaders!

These are the community rock stars!

Leaderboard > Power Apps

#1
WarrenBelz Profile Picture

WarrenBelz 739 Most Valuable Professional

#2
Michael E. Gernaey Profile Picture

Michael E. Gernaey 343 Super User 2025 Season 2

#3
Power Platform 1919 Profile Picture

Power Platform 1919 268

Last 30 days Overall leaderboard

Featured topics

Auto-Populate field Power Pages
Gallery Tabs - Show or Hide Tabs based on Field Value
How to patch multiple records at once
Enable Copilot for end users in model-driven apps
Question for everyone : How are you using Create Text GPT in AI Builder?
Community content - sample components, blogs etc. - Link to this page (http://aka.ms/PCFdemos)
Welcome to the Power Apps forum!

Product updates

Microsoft Power Platform Community release plans