Privacy of search results between site collections - sharepoint-2013

Currently SharePoint allows one site collection to configure search results of search center in such way to access the indexed results of other site collections.
Is it possible to disallow other site collections to view the crawled data of a specific site collection ?
For example: If one site collection admins configures his search results, I don't want him to be able to access the search results from my own site collection.
Thanks

SharePoint Search results are security trimmed so the best solution I would suggest is breaking permission of your site(limit permission for other site collection admins for your site).
https://collab365.community/how-to-security-trim-search-results-in-sharepoint-2013/
One possible solution would be customizing display template(to check search result items URL, if url belongs to specific site collection, hide it, while this is site collection level means you need customize display template in target site collection which you want to hide the content).
https://www.c-sharpcorner.com/article/steps-to-create-custom-display-templates-in-sharepoint-2013/

Related

How to render different pages based on the user type in oracle apex?

I am new to oracle apex and having trouble finding resources on how to do it. Any help would be really appreciated.
If you want to display the same page differently to each user, you'd then use the "Server-side condition" whose type is a function that returns Boolean, e.g.
return f_app_type(:APP_USER) in ('MANAGER', 'ANALYST');
which would render that element (region, item, whatever) only to users who are either managers or analysts, while other users wouldn't see it.
Or, if you wanted to navigate users to different pages, then you could use a branch. As it also offers the Server-side condition, you'd basically use the same principle as above and redirect each user to their own page.

Google Analytics - Grouping URL according to query paramters

I am running a campaign and all partner traffic going through a landing page.
However, this page url is dynamic according to various parameters... so my GA reports show hundreds of lines.
I know I can filter the parameters out... but I would like to extract the data per partner.
Here is an example of the dynamic urls :
/landing-page/?ref=partner01&id=value1&email=value2&param=value3
I want to clean the urls but leaving the first parameter "ref" in the report.
I tried ref=([^&]*) but it is not working.
Then GA should group urls (I guess) and I can see a report with data sorted per partner.
you may use 'Exclude URL Query Parameters' in a view settings and put there a list of all the unwanted parameters like id,email,param
Having ref out of the list will keep it in page path.
More on Help pages

Access 2013 on SharePoint 2013 Online - Multiple Questions

Very long time since I even look at Access.. but on SPO, with a database on Azure it seems really nice ... wondering tho..
Any way to remove that left pane with the Databases from the UI?
Set a list button to go to a URL formatted using selected column fields in the row?
Join in oData datasource like SharePoint Online List? Validate against SharePoint list Data? set dropdowns to lookup using SharePoint list data?
Any file upload control and upload to a sharePoint Library? A way to add metadata to a file and do some validation - like does file exist with this metadata. Dynamically rename files to some unique string.
Perform complex field validation with REGEX?
Secure the application and database to SharePoint groups.
What's the business language of choice? Not clear on how to edit and save macros. Can it make calls to webservices?
Any way to change that obsure url you get for the App in SharePoint 2013 Online?
Any way to remove that left pane with the Databases from the UI?
No, but there is a workaround. Right click on the tables you don't want to be visible, and select the option to hide them individually. You can also rename the table-views in that pane, so they appear to have more user-friendly names for your end-users.
Set a list button to go to a URL formatted using selected column fields in the row?
The best way to achieve something like this would be using a hyperlink control attached to a calculated column in your table/query where the URL and display text are computed and linked together automatically. If you need list functionality, you can allow the user to select an item in the list, and have that automatically update a separate hyperlink control to provide the link functionality.
Join in oData data source like SharePoint Online List? Validate against SharePoint list Data? set dropdowns to lookup using SharePoint list data?
Access 2013 Web Apps cannot pull external data at this time. Access 2013 Web Apps only accept incoming data connections e.g. a MS-SQL or oData service can use industry-standard methods to connect to your Access Web App and validate data.
Any file upload control and upload to a SharePoint Library? A way to add metadata to a file and do some validation - like does file exist with this metadata. Dynamically rename files to some unique string.
The only file support currently provided by Access Web Apps is in the form of images uploaded to an image field inside a table. This is useful to add people's photos to their records in a "contacts" table, and things like this. Other than that, you will need to use a custom SharePoint library interface for this type of functionality.
Perform complex field validation with REGEX?
Not currently supported to my knowledge.
Secure the application and database to SharePoint groups.
This functionality is handled within SharePoint, not within Access or SQL Azure. Secure your SharePoint site collection as needed, and these security settings will apply appropriately to read and/or write operations by SharePoint users within your database. e.g. a SharePoint "visitor" (read-only access) will not be able to edit any data in your database - only view it.
What's the business language of choice? Not clear on how to edit and save macros. Can it make calls to web-services?
In Access 2013 Web Apps, VBA is no longer supported. Macros have to be written using the GUI "wizardy" macro interface, which greatly limits the scope of available operations. As a result, you cannot perform more complex tasks, such as making calls to external web-services. However, for basic data operations and UI operations, the GUI macro interface serves the purpose well.
Any way to change that obscure URL you get for the App in SharePoint 2013 Online?
The URL is randomly assigned when you create an Access 2013 Web App, but is guaranteed to never change after it is assigned. Therefore, you could reasonably use your DNS/web-host to "mask" the URL with a CNAME or other type of HTTP redirection. There are many ways to do this, and they are all external to SharePoint and Access 2013 Web Apps, so it's up to your DNS and web providers to support this.

Managing multiple accounts in one session with multiple tabs open

Scenario:
I have an administration-application which manages the user accounts for another application. Now I would like to place an user-specific-link (e.g. Click here to login with user1) in the administration-application allowing the admin to directly log in with the user in a separate browser window or tab (target="_blank").
Problem:
When the admin clicks two or more links and opens two tabs with tab1=user1 and tab2=user2, the last clicked tab overwrites the session-variables of all other tabs. Sure... that's how sessions work, but I wonder if there is a way to let the admin manage multiple user interfaces with one session in multiple tabs? But I don't see a possibility to identify a specific tab in the browser so that I could say "in tab1 is user1 and in tab2 is user2 logged in ...
Question:
Has anyone done something similar and likes to share the basic idea of solving this?
EDIT:
One possible solution could be to add an parameter to the URL with the userid and hand it through to every page, right?
As your edit points out, the way to do this is with a url variable that specifies who the user should be.
There are a number of security issues with this approach tho.
I'm assuming that your initial link is doing some sort of security check to make sure that the initial "log in" of the user is an authorized request. You'll need to do a similar thing for this method. If your initial request is something like http://example.com/page.cfm?userid={id}&authtoken={encryptedtoken} I would then put that userid into the session scope as a valid userid that the admin can impersonate. The more links they click on the more users they can impersonate. On subsequent requests you check the requested userid against the allowed list in the session and either allow or deny the impersonation.
You'll also need to update all the links on the site so that they include the userid in them. The easier way to do this is to cheat and user jQuery or such to rewrite all internal urls with the userid appended. You would conditionally include that javascript based on the above check.
Lastly you'll likely want to prevent these urls that include the userid from appearing in search engines, if it's not a fully locked down site. You'll either need to use canonical urls to remove the userid, or set x-robots headers to tell search engines not to index the urls where the userid has been specified; or both.
That's the most primitive method of getting different "sessions" for multiple users in the same browser. However you'll then bump into issues if you're using the session scope for anything meaningful, because each tab will try overwriting the other. You'll need to overwrite the normal site session variables on each request, or you'll need to create different structures in the session scope for each userid that is used. How much of a problem this is depends on your application.
It's a do-able thing, but probably a lot more work then you were hoping for.
The other option is to get the admins to use Google Chrome with multiple profiles and copy and paste the login url into different profile windows. A slight inconvenience for them, but a lot less work for you.

Excluding list items created by certain users from a list's view

I have a custom list created in Sharepoint 2007 and displayed by a content query web part.
I would like to
Show all items to general admin users except those items created by two users.
The two admin users need to see all items in the list.
The first requirement is easily done by adding a filter to the view on the created by field.
The second one is where I need help, is there a way to set the view of a list based on the user logged in to acheive the second requirement?
Or is this achievable another way?
Many Thanks,
Nav
If user has SPBasePermissions.ManageLists permissions, he will have permissions to view all items in the list.
If its not about permissions, but just which view which user sees by default, then it will involve some sort of coding :
Either you create webpart which will switch to desired view for desired user. (Involves coding, building, deploying)
Use content editor web part to switch with javascript - not that nice solution. (Because page would reload when you open it).
In the end I created two pages one called restricted and the other for all users configured the views on each page for each group of users. Then I restricted access to the 'restricted' page to the relevant users.
I used audiencing to display a link to the 'restricted' page to selected users