Contact search security configuration parameters in ContactManager

There are two parameters you can set in the ContactManager config.xml file to configure security for contact searches, RestrictSearchesToPermittedItems and RestrictContactPotentialMatchToPermittedItems. You edit this file in Guidewire Studio for ContactManager.

You can use the RestrictSearchesToPermittedItems configuration parameter to control the interaction between the permissions abviewsearch and abview. The abviewsearch permission determines which users can search for contacts. However, not all users with abviewsearch permission also have abview permission. The abview permission enables users to view the contact’s detailed information.

If RestrictSearchesToPermittedItems is false, in response to a search the system returns all contacts that match the search criteria. If this parameter is true, the system returns only contacts for which the user has view permissions. This setting also interacts with contact and tag permissions. For example, if a user can view only the Person subtype with any tag and RestrictSearchesToPermittedItems is true, the system returns only contacts of the Person subtype.

Additionally, you can set the RestrictContactPotentialMatchToPermittedItems parameter. This parameter controls the security of potential search results. If the parameter is true, only the potential matches for which the user has view permissions are returned.