Guest Access
Comments
-
When we generate a link for Users and a different link for guests; I’ve noticed that a guest sign-in link is embedded on the USER sign-in pop-up.
How different is that link from the guest URL, from a security perspective? We’re putting links to the tool on the share-point site. -
The Login As Guest link on the login page makes a call to
"__doPostBack(aLoginAsGuest,)"
which prompts Service Host Manager to create a guest session. External applications or users should not be able to make that call without the context of the JS running in the background of the actual login page. As long as the GUEST account is active and can use the portal, then a user who has entered the portal this way will only have access to folders with default folder behavior for which the ALL USERS group has been given explicit permissions to view, open, use, etc. Folders can also be shown using the GUEST account by going to its view integration details page and configuring it (attached). The &Chrome=off token in this integration URL hides everything from the portal but the page itself to restrict the user to only the functionality in that page or folder.[img]att1[/img]
Howdy, Stranger!
Categories
- 2.1K All Categories
- 18 General
- 155 Installation / Setup
- 991 Flows
- 86 Rules
- 203 Administration
- 204 Portal
- 433 General Q & A
- 600 Forms
- 282 Reports
- 3 Designer Extensions
- 38 Example Flows
- 32 CSS Examples
- 1 Diagram Tile
- 5 Javascript Controls
- 139 Pages
- 1 Process Mining
- New Features
- 150 Datastructures
- 50 Repository
- 169 Integrations
- 25 Multi-Tenant
- 21 SDK
- 40 Modules
- 38 Settings
- 20 Active Directory
- 12 Version 7
- 34 Version 8