cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Reply
Highwaywoman
Helper I
Helper I

Only Allow Users in a SharePoint Group to see certain Power App Items ($)

‎08-22-2022 11:45 AM

(changing names for simplicity on my part) If you can help me with this, I don't mind tipping for time. At all. I'm kind of in a time crunch for this project.

I have a SharePoint List where a user can be assigned to: Group A, Group B or Group C.

They should only be able to create and view SharePoint List Items for their designated Group using my power app.

 

(1) How do I filter a gallery based on the group that the logged in user belongs to? 

(2) How do I filter the drop down based on the group that the logged in user belongs to? 

 

Case examples:

I belong to Group A. I go to submit a new item. I should only be able to select Group A from the dropdown because the app knows I belong to Group A.

I belong to Group A. I want to see the Gallery filter all items submit by group A. These can be from me or my Group A Team mates.

 

On Start=

Set(varUser, User());
Set(isuserinSPGroupA, !IsBlank ( LookUp ( 'Security List', Title = "Group A")));

Set(isuserinSPGroupB, !IsBlank ( LookUp ( 'Security List', Title = "Group B")));

Set(isuserinSPGroupC, !IsBlank ( LookUp ( 'Security List', Title = "Group C")));

 

Message 1 of 14
1,002 Views
0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
RandyHayes
Super User
Super User

‎08-22-2022 12:58 PM

@Highwaywoman 

Well, the trouble with that method is that you appear to be trying to individually assign groups to list items.  

I am assuming it is just the Security list that you are doing this on!?

 

Otherwise, users in general need read access (at a minimum) to the list for the app to work.  

 

Beyond that, if you are assigning only permission to individual records and not the list itself, then you can change the initial formula to:

With({_usr: User()},
    Set(glbUserGroups,
        {GroupA: LookUp('Security List', Title="Group A", true),
         GroupB: LookUp('Security List', Title="Group B", true),
         GroupC: LookUp('Security List', Title="Group C", true)
        }
    )
)

 

As for the rest of your needs - "then when I submit my item I not only see items created by me but I also see items created by anyone else in Group A."  This is not something you will get out of the box.

As mentioned, users will Have to have read permission to the list to see anything.  Unless you are going to manually manage access on every record (that would be a challenge), they will not see anything.

 

There is an option in SharePoint for people to only see the records they create, but that is not going to help.

 

What you might want to look a little more into is the automation to break inheritance on lists.  This article describes the process pretty well.

 

Now with that said...you don't have to have a separate security list either, you can check for group membership in your app to see if a person is just part of a particular group.

 

Hopefully this is fairly clear and useful.

_____________________________________________________________________________________
Digging it? - Click on the Thumbs Up below. Solved your problem? - Click on Accept as Solution below. Others seeking the same answers will be happy you did.
NOTE: My normal response times will be Mon to Fri from 1 PM to 10 PM UTC (and lots of other times too!)
Check out my PowerApps Videos too! And, follow me on Twitter @RandyHayes
Really want to show your appreciation? Buy Me A Cup Of Coffee!

View solution in original post

Message 4 of 14
801 Views
0 Kudos
13 REPLIES 13
RandyHayes
Super User
Super User

‎08-22-2022 11:51 AM

@Highwaywoman 

I am not seeing you account for the user in your formula to set the variables.

 

Here is what I would recommend in the OnStart:

With({_usr: User()},
    Set(glbUserGroups,
        {GroupA: LookUp('Security List', Title="Group A" && userColumn=_usr.Email, true),
         GroupB: LookUp('Security List', Title="Group B" && userColumn=_usr.Email, true),
         GroupC: LookUp('Security List', Title="Group C" && userColumn=_usr.Email, true)
        }
    )
)

 

For your Dropdown:

Filter(
    Table(
        {Value: "Group A", en: glbUserGroups.GroupA},
        {Value: "Group B", en: glbUserGroups.GroupB},
        {Value: "Group C", en: glbUserGroups.GroupC}
    ),
    en
)

 

As for the gallery...not sure what your columns are there or how you want to filter it, so if you can expand on that a little, that would help.

 

_____________________________________________________________________________________
Digging it? - Click on the Thumbs Up below. Solved your problem? - Click on Accept as Solution below. Others seeking the same answers will be happy you did.
NOTE: My normal response times will be Mon to Fri from 1 PM to 10 PM UTC (and lots of other times too!)
Check out my PowerApps Videos too! And, follow me on Twitter @RandyHayes
Really want to show your appreciation? Buy Me A Cup Of Coffee!
Message 2 of 14
836 Views
0 Kudos
Highwaywoman
Helper I
Helper I
In response to RandyHayes

‎08-22-2022 12:36 PM

Hello thank you for responding so quick. I feel this will be a challenge. 

 

I should have been more specific.

 

I am using a list with Group A, Group B and Group C utilizing separate row based security I do not have a Column with a person selected next to each.


For example, if I clicked on ellipses on Group A, I use Manage Access to assign a SP Permissions Group to this Record. (image)

Highwaywoman_1-1661196563509.png

 


The reason I thought this was the best option for me, is because There will be a Group A Manager who will need to add and remove multiple people from his group only. Same for Group B and Group C.  If you have a better way to do this, I am open to changing my ways. 

See image: Group A is assigned to list item Group A. Group B to list item Group B, Respectively. 

 

Highwaywoman_0-1661196364438.png

 

 

So in summary - in case I lost you, because I kind of just lost myself right there haha:
Depending on the user, the app will know what group they belong to because of the Permissions being used in the Security List.
Say I open up the app, it knows its me, Madeline & I am with Group A so it shows me dropdown options for my group only and then when I submit my item I not only see items created by me but I also see items created by anyone else in Group A.

 

Hope this helps clear my confusion up!

Message 3 of 14
829 Views
0 Kudos
RandyHayes
Super User
Super User

‎08-22-2022 12:58 PM

@Highwaywoman 

Well, the trouble with that method is that you appear to be trying to individually assign groups to list items.  

I am assuming it is just the Security list that you are doing this on!?

 

Otherwise, users in general need read access (at a minimum) to the list for the app to work.  

 

Beyond that, if you are assigning only permission to individual records and not the list itself, then you can change the initial formula to:

With({_usr: User()},
    Set(glbUserGroups,
        {GroupA: LookUp('Security List', Title="Group A", true),
         GroupB: LookUp('Security List', Title="Group B", true),
         GroupC: LookUp('Security List', Title="Group C", true)
        }
    )
)

 

As for the rest of your needs - "then when I submit my item I not only see items created by me but I also see items created by anyone else in Group A."  This is not something you will get out of the box.

As mentioned, users will Have to have read permission to the list to see anything.  Unless you are going to manually manage access on every record (that would be a challenge), they will not see anything.

 

There is an option in SharePoint for people to only see the records they create, but that is not going to help.

 

What you might want to look a little more into is the automation to break inheritance on lists.  This article describes the process pretty well.

 

Now with that said...you don't have to have a separate security list either, you can check for group membership in your app to see if a person is just part of a particular group.

 

Hopefully this is fairly clear and useful.

_____________________________________________________________________________________
Digging it? - Click on the Thumbs Up below. Solved your problem? - Click on Accept as Solution below. Others seeking the same answers will be happy you did.
NOTE: My normal response times will be Mon to Fri from 1 PM to 10 PM UTC (and lots of other times too!)
Check out my PowerApps Videos too! And, follow me on Twitter @RandyHayes
Really want to show your appreciation? Buy Me A Cup Of Coffee!
Message 4 of 14
802 Views
0 Kudos
Highwaywoman
Helper I
Helper I
In response to RandyHayes

‎08-22-2022 01:10 PM

Hi Randy, thanks but I think I'm just burning myself out here because i'm not grasping it.

 

So do you perhaps know an easier way to on start have the app recognize which SharePoint Permission Group a person belongs in? You said i don't need to have a separate list. Which is hopeful.


"If these people are in SharePoint permission group A, filter gallery to show items only created by Group A" kind of scenario?

 

My ultimate goal is for the app to just know what permissions a person has when they start the app and filter the gallery accordingly. I can deal without the dropdown , If i can just get one win today. Like a gallery showing only item created by the people in a group.

Message 5 of 14
804 Views
0 Kudos
RandyHayes
Super User
Super User

‎08-22-2022 01:31 PM

@Highwaywoman 

Yes...but here is the kicker - 

""If these people are in SharePoint permission group A, filter gallery to show items only created by Group A" kind of scenario?"  

When you say "Items" I assume you mean items in a separate list, not the security list.  And, we've not mentioned that one.  Is there some column or indicator in the record to determine what is group A, B or other?

_____________________________________________________________________________________
Digging it? - Click on the Thumbs Up below. Solved your problem? - Click on Accept as Solution below. Others seeking the same answers will be happy you did.
NOTE: My normal response times will be Mon to Fri from 1 PM to 10 PM UTC (and lots of other times too!)
Check out my PowerApps Videos too! And, follow me on Twitter @RandyHayes
Really want to show your appreciation? Buy Me A Cup Of Coffee!
Message 6 of 14
799 Views
0 Kudos
Highwaywoman
Helper I
Helper I
In response to RandyHayes

‎08-22-2022 01:57 PM

Yes. Separate list. Correct. 

 

It's a list full of Job openings.

 

So, for example, Group A has permissions to submit applications for "HR".

Group B can submit applications for "IT" ect.

 

Every group can submit to this same list but they should only be able to see their groups' applications.  Thats why i am trying to get permissions created per Group so that way in the app they can only see applications via their Group of people.
--------------------------
On a Follow up note, I used your glbUserGroups concept. It recognizes individual names but not Selected Groups with multiple names, I know i must have missed something on my end.

Highwaywoman_0-1661201988489.png

 

 

Thanks again for everything so far. Either way, i appreciate the time spent



Message 7 of 14
793 Views
0 Kudos
RandyHayes
Super User
Super User

‎08-22-2022 02:41 PM

@Highwaywoman 

So you're still faced with the fact that you don't have that level of control on the items in your list.

A user must have create/edit permission to create any entry.  This means that they need read access as well.  So, by default the users will see all items.

The only way to change that is to not give people access to the list (breaks app) but instead then manage permission and share with them (then the app would work but for that one item only).  

So that means that every entry someone makes would need to then be assigned permission to the appropriate group.  That would be impractical to do manually.

The article I pointed out though would do exactly that - it would break the inheritance on the item, then it would assign the person creating full control and then it would add a group to have full control as well.

This would solve the need for the list part.

 

As for the rest, well, you really don't have to deal with figuring out which group is which and what to display.  With the permissions altered from the above mentioned process, when the user goes in, they would only see what is in their group.  No need to check and alter the app...it would work the same for all users and all groups.

 

As for your follow-up - no, that formula is not meant for multiple select users.  It was based on the assumption that you were NOT using a people column in your list and that instead you were using the manage permissions action to allow only certain records to be seen.  Then, the formula would not use the person name at all because the concept is - if you can look up the record, then you obviously have permission to it and thus you are "in that group"

_____________________________________________________________________________________
Digging it? - Click on the Thumbs Up below. Solved your problem? - Click on Accept as Solution below. Others seeking the same answers will be happy you did.
NOTE: My normal response times will be Mon to Fri from 1 PM to 10 PM UTC (and lots of other times too!)
Check out my PowerApps Videos too! And, follow me on Twitter @RandyHayes
Really want to show your appreciation? Buy Me A Cup Of Coffee!
Message 8 of 14
790 Views
0 Kudos
Highwaywoman
Helper I
Helper I
In response to RandyHayes

‎08-22-2022 05:34 PM

Good evening Randy, 

 

8:30 PM and I  just cant sleep without trying to fix this. 

I followed the steps in the article and it is working as directed... 'Created By' gets permissions and  'Group A' gets edit permissions as well. Now my mind is stuck at how does this bring me to the solution that I need?

 

That solution being: different groups to see different records.

Say, an item could be categorized 3 different ways. HR, IT, FrontOffice.

Case:

I create an item categorized as IT. This should be seen by Group A.

Sally Creates an item for HR, this should be seen by Group B.

Rob creates item for Front Office, this should be seen by Group C.

None of these items should be seen by other groups.

 

At this current moment, the workflow runs on every record and shares every record with the same Group once it is created/modified. How do I let he workflow know different categories of items should be shares with certain groups only?

Thanks again!! =s

Message 9 of 14
783 Views
0 Kudos
RandyHayes
Super User
Super User

‎08-23-2022 07:53 AM

@Highwaywoman 

So this brings me back to some of the original thinking...how are you identifying the item as to what group it belongs to?  You should have (seems to me) at the very least, a Group or Department column in your record.

 

Then you would alter your PowerAutomate flow to look at that category/group and assign permission based on that.  So, if the cat/group is "IT", then it would assign the IT group permission. etc.

 

 

_____________________________________________________________________________________
Digging it? - Click on the Thumbs Up below. Solved your problem? - Click on Accept as Solution below. Others seeking the same answers will be happy you did.
NOTE: My normal response times will be Mon to Fri from 1 PM to 10 PM UTC (and lots of other times too!)
Check out my PowerApps Videos too! And, follow me on Twitter @RandyHayes
Really want to show your appreciation? Buy Me A Cup Of Coffee!
Message 10 of 14
767 Views
0 Kudos

Helpful resources

Announcements
Announcement image

Power Platform Connections Ep 14 | J. Panchal | Thursday, 18 May 2023

Episode Fourteen of Power Platform Connections sees David Warner and Hugo Bernier talk to Microsoft PM Jocelyn Panchal, alongside the latest news, videos, product reviews, and community blogs.   Use the hashtag #PowerPlatformConnects on social media for a chance to have your work featured on the show.      Show schedule in this episode:  00:00 Cold Open 00:32 Show Intro 01:10 Jocelyn Panchal Interview 24:10 Blogs & Articles 29:50 Outro & Bloopers  Check out the blogs and articles featured in this week’s episode:   https://www.nathalieleenders.com/Blog/index.php/;focus=STRATP_com_cm4all_wdn_Flatpress_42136159&path=?x=entry:entry230511-101930#C_STRATP_com_cm4all_wdn_Flatpress_42136159__-anchor  @NathLeenders https://www.keithatherton.com/posts/2023-05-12-msbuild2023-cloud-skills-challenge/  @MrKeithAtherton https://elliskarim.com/2023/05/13/how-to-find-files-in-onedrive-that-match-a-naming-pattern/  @MrCaptainKarim https://www.linkedin.com/pulse/my-fond-memories-scottish-summit-2022-pranav-khurana/ @pranavkhuranauk https://www.linkedin.com/feed/update/urn:li:activity:7061777660745560064/?updateEntityUrn=urn%3Ali%3Afs_feedUpdate%3A%28V2%2Curn%3Ali%3Aactivity%3A7061777660745560064%29  @thevictordantas  Action requested: Feel free to provide feedback on how we can make our community more inclusive and diverse.  This episode premiered live on our YouTube at 12pm PST on Thursday 18th May 2023.  Video series available at Power Platform Community YouTube channel.  Upcoming events:  Power Apps Developers Summit – May 19-20th - London European Power Platform conference – Jun. 20-22nd - Dublin Microsoft Power Platform Conference – Oct. 3-5th - Las Vegas  Join our Communities:  Power Apps Community Power Automate Community Power Virtual Agents Community Power Pages Community  If you’d like to hear from a specific community member in an upcoming recording and/or have specific questions for the Power Platform Connections team, please let us know. We will do our best to address all your requests or questions.   

Announcement image

May 2023 Community Newsletter and Upcoming Events

Welcome to our May 2023 Community Newsletter, where we'll be highlighting the latest news, releases, upcoming events, and the great work of our members inside the Biz Apps communities. If you're new to this LinkedIn group, be sure to subscribe here in the News & Announcements to stay up to date with the latest news from our ever-growing membership network who "changed the way they thought about code".       LATEST NEWS "Mondays at Microsoft" LIVE on LinkedIn - 8am PST - Monday 15th May  - Grab your Monday morning coffee and come join Principal Program Managers Heather Cook and Karuana Gatimu for the premiere episode of "Mondays at Microsoft"! This show will kick off the launch of the new Microsoft Community LinkedIn channel and cover a whole host of hot topics from across the #PowerPlatform, #ModernWork, #Dynamics365, #AI, and everything in-between. Just click the image below to register and come join the team LIVE on Monday 15th May 2023 at 8am PST. Hope to see you there!     Executive Keynote | Microsoft Customer Success Day CVP for Business Applications & Platform, Charles Lamanna, shares the latest #BusinessApplications product enhancements and updates to help customers achieve their business outcomes.     S01E13 Power Platform Connections - 12pm PST - Thursday 11th May Episode Thirteen of Power Platform Connections sees Hugo Bernier take a deep dive into the mind of co-host David Warner II, alongside the reviewing the great work of Dennis Goedegebuure, Keith Atherton, Michael Megel, Cat Schneider, and more. Click below to subscribe and get notified, with David and Hugo LIVE in the YouTube chat from 12pm PST. And use the hashtag #PowerPlatformConnects on social media for a chance to have your work featured on the show.     UPCOMING EVENTS   European Power Platform Conference - early bird ticket sale ends! The European Power Platform Conference early bird ticket sale ends on Friday 12th May 2023! #EPPC23 brings together the Microsoft Power Platform Communities for three days of unrivaled days in-person learning, connections and inspiration, featuring three inspirational keynotes, six expert full-day tutorials, and over eighty-five specialist sessions, with guest speakers including April Dunnam, Dona Sarkar, Ilya Fainberg, Janet Robb, Daniel Laskewitz, Rui Santos, Jens Christian Schrøder, Marco Rocca, and many more. Deep dive into the latest product advancements as you hear from some of the brightest minds in the #PowerApps space. Click here to book your ticket today and save!      DynamicMinds Conference - Slovenia - 22-24th May 2023 It's not long now until the DynamicsMinds Conference, which takes place in Slovenia on 22nd - 24th May, 2023 - where brilliant minds meet, mingle & share! This great Power Platform and Dynamics 365 Conference features a whole host of amazing speakers, including the likes of Georg Glantschnig, Dona Sarkar, Tommy Skaue, Monique Hayward, Aleksandar Totovic, Rachel Profitt, Aurélien CLERE, Ana Inés Urrutia de Souza, Luca Pellegrini, Bostjan Golob, Shannon Mullins, Elena Baeva, Ivan Ficko, Guro Faller, Vivian Voss, Andrew Bibby, Tricia Sinclair, Roger Gilchrist, Sara Lagerquist, Steve Mordue, and many more. Click here: DynamicsMinds Conference for more info on what is sure an amazing community conference covering all aspects of Power Platform and beyond.    Days of Knowledge Conference in Denmark - 1-2nd June 2023 Check out 'Days of Knowledge', a Directions 4 Partners conference on 1st-2nd June in Odense, Denmark, which focuses on educating employees, sharing knowledge and upgrading Business Central professionals. This fantastic two-day conference offers a combination of training sessions and workshops - all with Business Central and related products as the main topic. There's a great list of industry experts sharing their knowledge, including Iona V., Bert Verbeek, Liza Juhlin, Douglas Romão, Carolina Edvinsson, Kim Dalsgaard Christensen, Inga Sartauskaite, Peik Bech-Andersen, Shannon Mullins, James Crowter, Mona Borksted Nielsen, Renato Fajdiga, Vivian Voss, Sven Noomen, Paulien Buskens, Andri Már Helgason, Kayleen Hannigan, Freddy Kristiansen, Signe Agerbo, Luc van Vugt, and many more. If you want to meet industry experts, gain an advantage in the SMB-market, and acquire new knowledge about Microsoft Dynamics Business Central, click here Days of Knowledge Conference in Denmark to buy your ticket today!   COMMUNITY HIGHLIGHTS Check out our top Super and Community Users reaching new levels! These hardworking members are posting, answering questions, kudos, and providing top solutions in their communities.   Power Apps:  Super Users: @WarrenBelz, @LaurensM  @BCBuizer  Community Users:  @Amik@ @mmollet, @Cr1t    Power Automate:  Super Users: @Expiscornovus , @grantjenkins, @abm  Community Users: @Nived_Nambiar, @ManishSolanki    Power Virtual Agents:  Super Users: @Pstork1, @Expiscornovus  Community Users: @JoseA, @fernandosilva, @angerfire1213    Power Pages: Super Users: @ragavanrajan  Community Users: @Fubar, @Madhankumar_L,@gospa  LATEST COMMUNITY BLOG ARTICLES  Power Apps Community Blog  Power Automate Community Blog  Power Virtual Agents Community Blog  Power Pages Community Blog  Check out 'Using the Community' for more helpful tips and information:  Power Apps , Power Automate, Power Virtual Agents, Power Pages 

Announcement image

Microsoft Power Platform Conference | Registration Open | Oct. 3-5 2023

We are so excited to see you for the Microsoft Power Platform Conference in Las Vegas October 3-5 2023! But first, let's take a look back at some fun moments and the best community in tech from MPPC 2022 in Orlando, Florida.   Featuring guest speakers such as Charles Lamanna, Heather Cook, Julie Strauss, Nirav Shah, Ryan Cunningham, Sangya Singh, Stephen Siciliano, Hugo Bernier and many more.   Register today: https://www.powerplatformconf.com/   

Announcement image

Check out the new Power Platform Communities Front Door Experience!

We are excited to share the ‘Power Platform Communities Front Door’ experience with you!   Front Door brings together content from all the Power Platform communities into a single place for our community members, customers and low-code, no-code enthusiasts to learn, share and engage with peers, advocates, community program managers and our product team members. There are a host of features and new capabilities now available on Power Platform Communities Front Door to make content more discoverable for all power product community users which includes ForumsUser GroupsEventsCommunity highlightsCommunity by numbersLinks to all communities Users can see top discussions from across all the Power Platform communities and easily navigate to the latest or trending posts for further interaction. Additionally, they can filter to individual products as well.       Users can filter and browse the user group events from all power platform products with feature parity to existing community user group experience and added filtering capabilities.     Users can now explore user groups on the Power Platform Front Door landing page with capability to view all products in Power Platform.    Explore Power Platform Communities Front Door today. Visit Power Platform Community Front door to easily navigate to the different product communities, view a roll up of user groups, events and forums.

Announcement image

Welcome to the Power Apps Community

Welcome! Congratulations on joining the Microsoft Power Apps community! You are now a part of a vibrant group of peers and industry experts who are here to network, share knowledge, and even have a little fun! Now that you are a member, you can enjoy the following resources:   The Microsoft Power Apps Community Forums If you are looking for support with any part of Microsoft Power Apps, our forums are the place to go. They are titled "Get Help with Microsoft Power Apps " and there you will find thousands of technical professionals with years of experience who are ready and eager to answer your questions. You now have the ability to post, reply and give "kudos" on the Power Apps community forums! Make sure you conduct a quick search before creating a new post because your question may have already been asked and answered!   Microsoft Power Apps IdeasDo you have an idea to improve the Microsoft Power Apps experience, or a feature request for future product updates? Then the "Power Apps Ideas" section is where you can contribute your suggestions and vote for ideas posted by other community members. We constantly look to the most voted Ideas when planning updates, so your suggestions and votes will always make a difference.   Community Blog & NewsOver the years, more than 600 Power Apps Community Blog Articles have been written and published by our thriving community. Our community members have learned some excellent tips and have keen insights on building Power Apps. On the Power Apps Community Blog, read the latest Power Apps related posts from our community blog authors around the world. Let us know if you would like to become an author and contribute your own writing — everything Power Apps related is welcome!   Power Apps Samples, Learning and Videos GalleriesOur galleries have a little bit of everything to do with Power Apps. Our galleries are great for finding inspiration for your next app or component. You can view, comment and kudo the apps and component gallery to see what others have created! Or share Power Apps that you have created with other Power Apps enthusiasts. Along with all of that awesome content, there is the Power Apps Community Video & MBAS gallery where you can watch tutorials and demos by Microsoft staff, partners, and community gurus in our community video gallery.   Again, we are excited to welcome you to the Microsoft Power Apps community family! Whether you are brand new to the world of process automation or you are a seasoned Power Apps veteran. Our goal is to shape the community to be your ‘go to’ for support, networking, education, inspiration and encouragement as we enjoy this adventure together!   Let us know in the Community Feedback if you have any questions or comments about your community experience.To learn more about the community and your account be sure to visit our Community Support Area boards to learn more! We look forward to seeing you in the Power Apps Community!The Power Apps Team

Top Solution Authors
View All
Top Kudoed Authors
View All
Users online (3,973)