AppPermissions
Manages app-level permissions that control whether users or groups can view, edit, or manage a Kintone app, supporting security reviews and role maintenance.
Select
The AppId column is required in the WHERE clause. The add-in will use the Kintone APIs to filter the results by this column. By default, the add-in will process other filters client-side within the add-in.
For example, the following queries are processed server side:
SELECT * FROM AppPermissions WHERE AppId = 6 SELECT * FROM AppPermissions WHERE AppId = 6 AND IsPreview = false
Update
For updating the AppPermissions, provide the Rights as an aggregate. The AppId and IsPreview columns are required to update the AppPermissions.
UPDATE AppPermissions SET Rights = '[{"entity":{"type":"CREATOR"},"appEditable":true,"recordViewable":true,"recordAddable":true,"recordEditable":true,"recordDeletable":true,"recordImportable":true,"recordExportable":true}]' WHERE AppId = 6 AND IsPreview = true
Columns
| Name | Type | ReadOnly | References | Description |
| AppId [KEY] | Integer | False |
Identifier of the Kintone app whose permission settings are being retrieved or updated. | |
| EntityType [KEY] | String | False |
Type of entity to which the permission applies, such as a user, group, or department. | |
| EntityCode | String | False |
Code identifying the entity that receives the permission, used to match users, groups, or departments. | |
| IncludeSubs | Boolean | False |
Indicates whether permissions granted to a department also apply to its subordinate departments. | |
| AppEditable | Boolean | False |
Specifies whether the entity can manage the app by accessing and modifying its settings. | |
| RecordViewable | Boolean | False |
Specifies whether the entity is allowed to view records in the app. | |
| RecordAddable | Boolean | False |
Specifies whether the entity is permitted to add new records to the app. | |
| RecordEditable | Boolean | False |
Specifies whether the entity can edit existing records in the app. | |
| RecordDeletable | Boolean | False |
Specifies whether the entity is allowed to delete records from the app. | |
| RecordImportable | Boolean | False |
Specifies whether the entity can import records into the app using file-based operations. | |
| RecordExportable | Boolean | False |
Specifies whether the entity can export records from the app for external use or backup. | |
| Revision | String | True |
Revision number of the app settings, helping track permission changes over time. |
Pseudo-Columns
Pseudo column fields are used in the WHERE clause of SELECT statements and offer a more granular control over the tuples that are returned from the data source.
| Name | Type | Description |
| IsPreview | Boolean |
Indicates whether to retrieve permission settings from the preview environment ('true') or from the live environment ('false'). The default value is 'true'. |
| Rights | String |
This value is used only when performing an update to supply modified permission settings. |