Okay, from what I can tell, anyone who works for my company can access K2. It doesn't seem to be restricted...
So, in standing up our solution, I used the following information to set up permissions for the various smart forms:
https://help.k2.com/displaycontent.aspx?id=6507
Thus, I set up a role for access to a particular form, use the URM Smart Object "Get Role Users" method to pull in the users for the role, filter for the person trying to access the form's name, passing the user's name to a data label, and then use an advanced condition to say if the data label is blank, show them an 'access denied' message and then re-direct them to a 'safe' site such as the company intranet.
I am finding two issues:
This takes about 5 minutes per form/view to set up, and I need to add this rule to every form and every view. Very time consuming.
It seems as though with Microsoft Edge, after the 'access denied' message pops up, they can hit "back" on the Edge window and it will take them into the form anyway...for whatever reason, Edge seems to behave differently than I.E. or Chrome (our other two browsers).
Anyway, is there a way to simply enforce access into K2 at the Active Directory level instead of having to build in these rules into every form? As in, I don't mind using the rules to limit access to a particular form to a particular user, but is there a way to block K2 access to anyone not in a particular active directory role from within K2 itself? Or, do I need to go to my system admins here at the company to build some kind of network rule?
Thanks for any assistance you can provide.
