Issue with privacy rules for differentiated access and public page

Hello everyone,

I’m seeking advice on an issue with configuring Privacy Rules. I have a “Product” database that includes products from two different stores (store 1 and store 2). Privacy settings are such that logged-in users from each store can only see their own store’s products. However, I also want to create a public page that is accessible without logging in, where visitors can see and purchase products from both stores.

The problem arises with the default permissions under Everyone else in Privacy Rules: if I set them to allow finding products (Find this in search), logged-in users from both stores end up seeing all products from both stores, which isn’t the desired behavior.

Do you have any advice or solutions to keep the separation between logged-in users while having a publicly accessible page? Thanks in advance!

Cela devrait aider à exposer clairement votre problème sur le forum et à obtenir les conseils appropriés.

I’m trying to understand what you’re asking…

You want any logged out User to be able to see all products from all stores? yes?

So your Product needs to be publicly visible (or at least certain fields do).

It makes no sense to restrict what logged in Users can see if logged out Users can see everything (i.e. it’s public data).

You can use privacy rules to restrict certain fields to only logged in users, if that’s what you need?

If I set the privacy rules to ‘publicly visible,’ all products will be visible to external visitors, but users from Store 1 and Store 2 will also see the same products.

What I would like to configure is:

•	At the public level, all products should be displayed.
•	At the user level, only a user from a specific store should see the products from that store.

My parameter is as follows: if the current user is logged in and the current user’s store matches the product’s store.

Privacy rules are used for protecting sensitive data, and preventing access to it.

It sounds more like your question is to do with search constraints.

You can’t use privacy rules (at least in this case) to constrain your searches, as the data is (and must be) public.

Use the correct constraints on your searches.

1 Like