We are using Portal & WebappBuilder. We would like particular users to edit X layer but other users only see it.
What should we do about layer based authorization?
Your question is a bit too generalized; so I'll mention some resources to get you started. When editing in Web AppBuilder, you are working with feature services.
If the source data for the feature layer you want to edit is a feature service from ArcGIS Server - you can leverage the security model available with feature services such as editor permissions and ownership-based access control.
Feature service permissions and editor tracking—Documentation | ArcGIS for Server
If the source data for the feature layer is a hosted feature service in Portal for ArcGIS, you can access the item details page and set editing permissions for it.
Manage hosted web layers—Portal for ArcGIS | ArcGIS for Server
Hope this helps,
As mentioned, the question / statement is very vague and open to many avenues of security.
Derek has provided a few...
Another way would be to create two services. One would be a mapping service (VIEW of the data) and the other would be the FeatureAccess (Editable featureclasses). Database end would have to enable Update/Select/Delete etc. (whatever you want). You lock down using A.D., the Editing service. (Windows Authentication / Web Tier on ArcGIS Server) in this case, the FeatureAccess service layers. Thus, only users that have editing ability will have those layers show up in the web map and web app and all the remaining users get a 'view' (not editable) of the service layers.
Sorry for latency,
Thank you for your precious answers! I am going to read the articles and try them.
Retrieving data ...