Concept - Security rule in Qlik Sense
This section explains the concept of security rules in Qlik Sense
Before you can use the Qlik Sense system, in most cases you want to know who the user is, we call this authentication.
The next step is that based on this userId you want to assign the user access rights, we call this authorization. Both developers and users communicate with Sense via the Proxy (see this as a webserver which performs the authentication step: who are you?).
Authorization using the security rules
After the authentication (who are you?) you need to think how you want to integrate the authorization (what can you do and see?). The keys you want to protect in Sense are called resources. Example resources are