Dynamic Access Rules
Paid featureIn ToolJet you can configure dynamic access rules to build secure, role-based applications. You can configure permissions at the page level, query level, component level, and row level to ensure users only access the features and data they're authorized to use.
When To Use
- Multi-role applications: When your app serves different user types (leadership, managers, executives, etc.) who need access to different features, data, or functionality based on their role.
- Sensitive data protection: When your application handles confidential information like financial data, personal records, or business-critical operations that should only be accessible to authorized personnel.
- Compliance and security requirements: When your organization has regulatory requirements, audit trails, or security policies that mandate controlled access to specific features, data, or administrative functions.
Permission Types
Permission Level | Description | Use When |
|---|---|---|
| Page Level | Control which users can access specific pages in your application | Entire page should be hidden from certain roles |
| Query Level | Restrict which users can execute particular queries or API calls | Sensitive data operations need protection |
| Component Level | Hide or show specific UI components based on access permission | Users can view a page but shouldn't interact with all elements |
| Row Level Security | Control which records a user can see or interact with in database queries | Different users need access to different subsets of data from the same table |
Need Help?
- Reach out via our Slack Community
- Or email us at [email protected]
- Found a bug? Please report it via GitHub Issues