Enabling Security Predicates

Security predicates in PS Cloud Core Analytics ensure that only the authorized users can access specific data, by:

  • Restricting users to only view the project and opportunity data shared with them in the Backlog, Billings, and Project Reporting datasets
  • Restricting resources to view only their own skills and utilization data
  • Restricting managers to view only their own skills and utilization data and the skills and utilization data of resources below them in their respective hierarchies
  • Allowing selected users to view and edit specific revenue forecast records

You can also provide selected users with unrestricted access to the skills and utilization data of all resources. For more information, see Permission Control Fields.

For more information on the available security predicates, see Security Predicates in PS Cloud Core Analytics.

Notes:
  • To use the security predicate for the Revenue Forecast dataset, you must also select the relevant options in the permission control record for each user you want to be able to view or edit revenue forecast data.
  • To use the security predicate for the Resource Skills dataset, you must ensure a manager is assigned to at least one Salesforce user record.

To enable the security predicate for object sharing:

  1. From your PS Cloud Analytics Setup record, select Object Sharing. If the field is not available, you must add it to your PS Cloud Analytics Setup record manually. For more information on security predicates, see PS Cloud Analytics Setup Fields.
  2. Update your PS Cloud Core Analytics app. For more information, see Updating Your PS Cloud Core Analytics App.

To enable the security predicate for resource skills:

  1. From your PS Cloud Analytics Setup record, select Resource Skills View Restriction. If the field is not available, you must add it to your PS Cloud Analytics Setup record manually. For more information on security predicates, see PS Cloud Analytics Setup Fields.
  2. Grant permissions to the relevant users that you want to view the skills data of all resources. For more information, see Providing Access to the Skills and Utilization Data of All Resources.
  3. Update your PS Cloud Core Analytics app. For more information, see Updating Your PS Cloud Core Analytics App.
  4. Enter the following value in the Security Predicate field of the Resource Skills dataset:
    Copy
    'Resource.pse__Salesforce_User__c' == "$User.Id" || 'Resource.ViewAll.pse__User__c' == "$User.Id" || 'Resource.SalesforceUser.Managers' == "$User.Id"

To enable the security predicate for revenue forecasting:

  1. From your PS Cloud Analytics Setup record, select Revenue Forecasting Permission Controls. If the field is not available, you must add it to your PS Cloud Analytics Setup record manually. For more information on security predicates, see PS Cloud Analytics Setup Fields.
  2. Update your PS Cloud Core Analytics app. For more information, see Updating Your PS Cloud Core Analytics App.
  3. Enter the following value in the Security Predicate field of the Revenue Forecast dataset:
    Copy
    'PermissionControlOpportunity.UserId' == "$User.Id" || 'PermissionControlProject.UserId' == "$User.Id" || 'PermissionControl.RPG.UserId' == "$User.Id"

To enable resources to view only their own utilization data:

  1. From your PS Cloud Analytics Setup record, in Utilization Results Security Mode, select "Individual".

  2. If you want to allow selected users to view the utilization data of all resources, do the following:

    1. Grant permissions to the relevant users to view all user's utilization information. For more information, see Providing Access to the Skills and Utilization Data of All Resources.
    2. From your PS Cloud Analytics Setup record, select Utilization Results Permission Controls.
  3. Update your PS Cloud Core Analytics app. For more information, see Updating Your PS Cloud Core Analytics App.

If any of the required fields are not available, you must add them to your PS Cloud Analytics Setup record manually. For more information on security predicates, see PS Cloud Analytics Setup Fields

To enable managers view only their own utilization data and the utilization data of resources below them in their respective hierarchies:

  1. From your PS Cloud Analytics Setup record, in Utilization Results Security Mode, select "Hierarchy".

  2. In Utilization Results Hierarchy Mode, select one of the following:

    • "Role Field on User Object" to enable managers to view only their own utilization data and the data of resources below them in their respective role hierarchy
    • "Manager Field on User Object" to enable managers to view only their own utilization data and the data of resources below them in their respective management hierarchy
    • "Reports To Field on User Object" to enable managers to view only their own utilization data and the data of resources below them in their respectiv hierarchy of reports

    • If you want to allow selected users to view the utilization data of all resources, do the following:

      1. Grant permissions to the relevant users to view all user's utilization information. For more information, see Providing Access to the Skills and Utilization Data of All Resources.
      2. From your PS Cloud Analytics Setup record, select Utilization Results Permission Controls.
  3. Update your PS Cloud Core Analytics app. For more information, see Updating Your PS Cloud Core Analytics App.

If any of the required fields are not available, you must add them to your PS Cloud Analytics Setup record manually. For more information on security predicates, see PS Cloud Analytics Setup Fields

Removing the Security Predicate

To remove the security predicate, delete the value in the Security Predicate field from the relevant dataset. For more information, see the Salesforce Help.