What is the best way to write a custom security rule

cmoralesrodriguez · October 18, 2023, 7:41pm

We have used the following 2 codes snippets in our custom screen security condition, within the app settings of two different apps. I’m wondering if there is one that is better? Which one should we be using?

var loginSSO = #####;
var loginEmail = ####;

var isAllowed =
(session && session.entries && session.entries.dataSource) ||
(session && session.entries && session.entries.saml2) ||
( page.id === loginSSO ||
page.id === loginEmail);

if (page.id !== loginSSO && !isAllowed) {
error = true;
navigate = { action: ‘screen’, page: loginSSO, transition: ‘slide.left’ };
}

var loginSSO = ####;
var IoginEmail = ####;

var isAllowed =
(session && session.entries && session.entries.dataSource) ||
(session && session.entries && session.entries.saml2) ||
(page.id === loginSSO ||
page.id === IoginEmail);

if (!isAllowed) {
error = true;
navigate = { action: ‘screen’, page: loginSSO, transition: ‘slide.left’ };
}

Deb · October 19, 2023, 8:53am

Hi Catalina,

I would use the first version over the second. The reason is that the first one will ensure you are not stuck on an infinite loop if you visit the SSO screen.

Thanks,
Deb

Topic		Replies	Views
Custom-security-rules Get Help web-apps , login	4	573	May 11, 2021
Admin specific Security Rules Get Help	2	497	May 26, 2021
My app is is for internal and external users. How do I set a security rule for both Single Sign On and a data source login? Get Help sso , login , security-rules	1	687	April 19, 2021
Custom security script error message Get Help	12	339	February 24, 2023
Take users to different screens based on form data Get Help form	1	395	April 4, 2022

What is the best way to write a custom security rule

Related Topics