Hi @Pranjali,

Thanks for your post!

I believe my problem is occurring because I'm not actually using the

{% entitylist id:page.adx_entitylist.id %}

tag for showing data on the "detailed page" and instead just fetching data directly from the CDS by doing so: 

{% assign unit = entities['crc17_propertyunit'][request.params.id] %}

So if I go and change the way I fetch my data and start using:

{% entitylist id:page.adx_entitylist.id %}

, how do I then fetch a specific record by ID? From the previous page (browse all units page), I'm sending an ID forward in the request.params to the "Detailed page" to fetch data for this record only.

How do I fetch a specific record by the request.params.id without doing a for loop on the: 

{% entitylist id:page.adx_entitylist.id %}​

Hi @OliverRodrigues,

Sorry for the late reply. Thanks a lot for reaching out.

Regarding your "test" by registering on the portal and accessing the page while logged in. The reason it is showing the data as it should for you is that at the moment you don't get any web role when you register on the portal by default. That is managed manually in CE. I have now added the "Anonymous User" and "Authenticated User" to your user.

If you go check now, it doesn't show any data on the "details" page, but on the "properties for rent/buy" page the data is still shown. I believe the reason for the data is shown on the "properties for rent/buy" page is because I have created an entity list for that page and unchecked this:

This is on purpose because I want everyone to browse my properties whether you are logged in or not.

So for your registered user, you won't see any data on the "details" page now unless I made you tenant of one or more of the units in CE and you happen to click on one of these. Otherwise, all other units (the ones you are not a tenant of) will not show data. Though, if you went to "My Units" page you would see the units you are a tenant of.

There is like a conflict between how units are shown in "My Units" page and the "details" page, or actually, the pages are showing the same thing, but I want the "details" page to show unit data regardless of the type of user visiting the portal - just like the "properties for rent" page.

So I was wondering if I could control the entity permission setting in liquid code when retrieving data directly from CDS on the "details" page because if I could disable the entity permission (just like on the "properties for rent" page) I believe it should show the unit data regardless of the user, right?

I hope it's making sense... 🙂

Hi.. sorry about the delay

I am still a bit confused with your scenario.. I will try to recap what I understood

• you have a rent page with an Entity List, but entity permissions disabled and that's okay (keep entity permissions disabled for this list)
• you have a details page with a custom render via Web Template/Liquid --> if you are retrieving data via code (oData or Liquid), you must have entity permissions, you can have the entity permissions for both anonymous and authenticated users
• you have a my units page with an Entity List, and I guess you need entity permissions here to show only records associated with the user --> keep entity permissions enabled for this list and create an entity permissions just for authenticated users

does that make sense ?

------------

If you like this post, give a Thumbs up. Where it solved your request, Mark it as a Solution to enable other users find it.

Hi @OliverRodrigues ,

No worries at all. I really appreciate your help!

Seems like you understand the scenario. Tho, I have a few questions:

• rent page: all good - this page is also working as intended.
• details page: I am retrieving data with liquid as I posted in my code sample above. I haven't added any entity list to this page my self. As for as I understand, please correct me if I'm wrong, you need an entity list to control if the data from an entity list is controlled by entity permissions, right? But this page, even tho I have not added an entity list (with entity permissions enabled) still seems like it does have entity permissions enabled, as the data I retrieve is not shown properly. Or maybe I'm misunderstanding something and need to somehow add an entity list to this page and change my liquid code to use this entity list instead of this fetch: 

{% assign unit = entities['crc17_propertyunit'][request.params.id] %}​

In fact, this page is behaving just like the My Units page. If you are logged in as a user (e.g. a tenant) you will only see data on this page, if you happen to click on the same unit that you are associated with.

Example:
So let's say as a tenant you are associated with "Unit no. 123". On the rent page, you browse through the units. When you click on any unit other than "Unit no. 123" it will take you the details page a not show any data. But if you click on "Unit no. 123" on the rent page it will take you to the details page and show the data because this unit you are associated with. (Just like the My Units page).

I hope that didn't confuse you even more... 😅

• My Units page: this also works properly. This page only shows associated units.

Here is a screenshot of my current entity permissions for "Property Unit" (Unit):

Thank you very much for your time!

Hi 

---

@oml wrote:

...

• details page: I am retrieving data with liquid as I posted in my code sample above. I haven't added any entity list to this page my self. As for as I understand, please correct me if I'm wrong, you need an entity list to control if the data from an entity list is controlled by entity permissions, right? 

...

---

No. I think here is where you are mixing things up. You don't need entity list to control permissions to access Portal data. Permissions are required/optional depending on your configuration:

• Entity List/Entity Form/Web Form- you need to enable entity permissions if you want to add security, otherwise it will be available for everyone
  • If you need to show notes/sharepoint documents, you must have entity permissions for those, otherwise there is no need
• When retrieving data via custom code (oData / Liquid / Fetch / WebAPI) you MUST have entity permissions setup, but there is no relation here to entity list, you can come from an entity list (without entity permissions) and get to a web page and render data via liquid so it would require entity permissions

Do you need the 3 entity permissions you have setup? in my opinion you need two entity permissions

• propertyunit - contact level - authenticated web role --> this is to be used in the my units page
• propertyunit - global - authenticated and anonymous web role --> this is to be used in the details page via custom Liquid code

and just one final thing that you might be getting a bit mixed up, although this is not critical, the below is not a Fetch, you are retrieving data via Liquid Entity object, not a FetchXML

---

@oml wrote:

• ..... change my liquid code to use this entity list instead of this fetch: 

{% assign unit = entities['crc17_propertyunit'][request.params.id] %}​

...

Hi @OliverRodrigues,

Apologies for the very late reply and thanks for your post.

I had another project that needed my time.

I have now had some time to play around the entity permissions again. But without any luck.

Let me quickly explain what I have been testing and what I have at the moment:

Entity Permissions:

I now just have the two permissions as you suggested:

• contact level - authenticated web role
• global level - authenticated web role & anonymous web role

New test pages:

I have created a new page, "My Page"( link ) with a new entity list for my custom entity "Property Unit". For this entity list, I have enabled "View details" and target another new page, "My Page Details". I have NOT enabled entity permissions for this entity list.

This is how I retrieve data on the details page:

 {% assign unitid = request.params.id %}
    {% entityview logical_name:'crc17_propertyunit', name:"Unit Quick Details - Portal", page_size: 50 %}
    {% assign units = entityview.records | where: "crc17_propertyunitid", unitid %}
    {% assign unit = units.first %}

        <div>Unit Case no. - {{ unit.crc17_name }}</div><br/>
        <div>Address - {{ unit.crc17_streetname }}</div>
 {% endentityview %}

When you are not signed in to the portal this is working fine. However, when you sign in to the portal with a user which has some units assigned in CE, the details page is not showing data.

So a quick recap of what I'm trying to accomplish after all these posts:

1. I want an entity list (rent page) where you can browse through the units, click on a certain unit and get a details view of the unit (details page).
2. I want an entity list (My Units) showing me the related units for the logged-in user. 
3. As a logged-in user, I want to be able to browse through the rent page with all the units available, just like point 1.

Point 1 and 2 is accomplished, however, point 3 is not.

I really didn't expect to struggle this much trying to make this work... 😅

😅

Hi @oml,

I have recently created a blog post (https://justinburch.com/portal-security-2) providing instructions to see how Entity Permissions are being applied. While this is mostly useful to see how lists are manipulated, you should be able to identify if Entity Permissions are the cause of the issue (if the record doesn't show up when the show parameter is set to True).

Your issue definitely seems to be Permission related. I would recommend removing the Read permission from your Contact level Entity Permission, and using only the other applicable permissions. The Global permission will handle all scenarios for reading the data. Next, make sure that this Global permission is associated to both Anonymous and Authenticated Web Roles (I know - just double check!) and reset the cache (/_services/about as an admin contact).

I hope this helps,

Justin