Skip to main content
Open

Allow setting of credentials for file-based readers/writers

Related products:FME Flow
warrendev
mark2atsafe
  • warrendev
    warrendev
  • mark2atsafe
    mark2atsafe

mccorkdm
Contributor

When using FME Server the standard approach is to provide the service account access to the relevant files and folders used by the workspaces.  This would technically allow other authors to publish and run workspaces on files they shouldn’t be able to access if they know where the service account has access.  This idea is to propose that for any reader/writer that accesses files that set of credentials can be supplied to be used for that read or write operation similar to the way web connections are handled.

2 replies

LizAtSafe
Safer
Forum|alt.badge.img+15
  • Safer
  • July 15, 2024
NewOpen

jlebrun24
Participant
Forum|alt.badge.img+5
  • Participant
  • May 8, 2025

I would also add: introduce the ability to specify user credentials at the time of defining a network connection - similar to how Web Connections are handled.
This would allow authors to access network files using their own credentials or designated credentials, rather than relying solely on the service account. This limitation where only the service account has access to files, is a common constraint encountered with clients. It raises security and governance concerns, as it may unintentionally allow workspace authors to read or write data they shouldn't have access to, simply because the service account does. Even if connections can be shared manually to certain users/groups, enabling per-connection credentials would align with best practices in access control and improve overall security and flexibility.


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings