22.5.7

Enhancement

Application rights enforced at runtime

Application rights configured via Rights Management are now enforced when users interact with an application. Editing actions — such as modifying a filter box — are governed by both the rights on the target entity and the rights on the application itself. This gives organizations more precise control over what users can do within a given application, without altering the underlying entity rights model.

Note: An application does not grant access to the entities it contains. A user must hold editing rights on both the application and the target entity in order to make changes. This behavior is opt-in and controlled via a system setting — existing environments are unaffected until it is explicitly enabled.

User guidence is found here: Application Rights configuration

Bug Fixes

Initial rule evaluation and Connection Editor

A system administrator role defined in initial rules with full access did not evaluate correctly, even when no other rules were blocking access. The add (+) button in the Connection Editor was missing due to a UI bug.

Note: Applications not displaying as expected is not a bug — this is caused by the sequence in which rules are evaluated.

LOOKUP searches on object relations crashing in methods

Resolved a regression where performing a LOOKUP search on the relation between two objects inside a method caused an HTTP 500 Internal Server Error, resulting in a method crash. The issue affected Generic Units using the Classifies / Is a kind of relation object, with the search executed in CoNode.