Skip to main content

Notifications

Announcements

Welcome to the Power Platform Communities
News and Announcements icon
Community site session details

Community site session details

Session Id :
Power Platform Community / Forums / Power Pages - Power Apps Portals / Concern with Portal Ad...
Power Pages - Power Apps Portals
Unanswered

Concern with Portal Advanced Form Permissions for Anonymous Users

(0) ShareShare
ReportReport
Posted on by r_m_w 9

I have found what I think is an issue for the permissions you need to set for Advanced Forms v Basic Forms specifically for anonymous users.

 

Basic form - (No issue)

Custom entity allows anonymous users to create new requests.  Only table permission needed for anonymous is create.  This works.

 

Advanced Form - (Issue)

Same custom entity. This time two tabs on the form.  Each representing a step.  In order to navigate between the steps (next and previous) you need to also add the Write permission.  As this is anonymous and subsequently global, I am concerned that I'm opening up the internet to edit all records in this entity.  I am not exposing a specific form for edit but I'm still concerned this could be compromised.

 

Additionally (may be related or not), when you save the record source of step 2 to be data from previous step it does not save.

 

Note - my preference is Advanced form with steps as this works better for a form with lots of fields.

 

Conclusion

The conclusion that I draw is that if you want to use a form for Anonymous then you need to not use Advanced as this requires the write permission that allows edit on all records!

 

 

  • OOlashyn Profile Picture
    OOlashyn 3,496 Most Valuable Professional on at
    Re: Concern with Portal Advanced Form Permissions for Anonymous Users

    Hi @RMW,

     

    This is not a bug. Advance Form on the first step will create a record and on the next one you will work with already created record (if you passed it as a source for the next step). That's why you need to grant Write permission for this to work on Advance Form. And because this is an anonymous user there is no way for associate the record with it - that's why you need to grant Global permission to allow to work on the second and subsequent steps. If you need to have a complex multistep form for anonymous and don't won't to give users unnecessary permissions the only way that I can see is to build the form yourself and then submit data back to the system via Portal Web API.

Under review

Thank you for your reply! To ensure a great experience for everyone, your content is awaiting approval by our Community Managers. Please check back later.

Helpful resources

News and Announcements

Welcome to the Power Platform Communities

Quick Links

Paul Stork – Community Spotlight

We are honored to recognize Paul Stork as our July 2025 Community…

Congratulations to the June Top 10 Community Leaders!

These are the community rock stars!

Announcing the Engage with the Community forum!

This forum is your space to connect, share, and grow!

Leaderboard > Power Pages

#1
Lucas001 Profile Picture

Lucas001 60 Super User 2025 Season 1

#2
Fubar Profile Picture

Fubar 55 Super User 2025 Season 1

#3
surya narayanan Profile Picture

surya narayanan 35

Last month Overall leaderboard

Featured topics

Updates on Power Apps Portals - PLEASE READ

Product updates

Microsoft Power Platform Community release plans