You’re offline. This is a read only version of the page.
When sharing an app with a user and they access it via a website they are able to delete the connection.
How do I stop this? Is a big security hole that is stopping me from sharing apps with external companies and even internal users who are not computer literate.
The user can click on the Dynamics365 link - drop down to power apps - see conenctions and delte them.
This is for an on premise SQL connection running through a gateway. If the user selects edit they can see the gateway and change the settings as well.
Cheers in advance.
ED
They have the ability to delete the gateway connection.
They can see other apps not shared with them that use this source (SQL on premises)
Hi @Anonymous,
Shared App permission would work in the following way:
When share an App, under the App Detail page, when adding the user, there would be Permission (Can Edit, Can use) ready to choose.
When Can edit is selected, then under the SQL Server connection detail page, the Permission for the shared user would be automatically updated with "Can Use and Share".
And yes, users who has been shared to use the App would be able to find the shared SQL connections and the Delete option under the Connections tab in PowerApps web portal, but they can't delete this conneciton, as when clicking the delete icon, it will remind the user for lacking permissions:
For the connection usage part, yes, it could be seen by the shared user, and currently it seems to be not available to configure permission on that.
Please consider submit that as an idea, to have permission configuration available with the Connection details.
https://powerusers.microsoft.com/t5/PowerApps-Ideas/idb-p/PowerAppsIdeas
Regards,
Michael
Share
Report
All responses (
Answers (
752
