"All users" default landing page takes precedence over other custom permission groups

Hello Retool Community,
In my team, we have created some permission groups for the different categories of users we have, with different access level to the applications we have created. Although, all the users irrespective of your access level is still a member of the “All Users” permission group.

We have configured different landing pages for all the groups, and for the “All Users”, we intend to restrict the access of its members to a No Access page.

The Problem:
The users who do not have an editor or admin access, but are members of other custom groups, are still redirected to the landing page for the “All Users”.

Hey @chuksjoe,

Would selecting None do the job for you? Or do you still need to have a landing page for all users?

image1249×166 18.6 KB

Hi @MiguelOrtiz, thanks for your response.

When I select “None”, the users with only the All Users permission group will be seeing the apps' folder, and are also able to also see the Get started actions, which I don't want them to see.

Landing-page1920×945 41.1 KB

Hey @chuksjoe

That behavior is controlled under the additional setting section here:

image580×662 30.6 KB

Just make sure they are all unticked (as well as for your other groups)

This here is a great resource from the guys at BoldTech regarding permissions, I think it will be helpful as you start setting permissions.

Hi @MiguelOrtiz , the checkboxes only controls what the user can see on the settings page. They have nothing to do with the landing page.

Hey @chuksjoe,

Have you removed all access from the apps for this Group? could this be what is causing them to land in your retool admin page?

@MiguelOrtiz, I've done all that already. I only granted the All Users members Use access to a one app page, which I intend to set as the default landing page.

But the problem is that that landing page overrides the landing pages for other permission groups because all the users in other permission groups are also members of the All Users group.

Hello @chuksjoe,

Apologies for the issues and confusion with setting this up.

The re-direct to landing page only works with one landing page option. This does not work with multiple landing pages

If you have multiple landing pages, users invited to the app/org will get redirected to the higher level apps page, as you are reporting.

You should remove landing page from all users group.

Also, ensure users are only in one group and only have one landing page.

Thank you, @Jack_T, for your response and explanation. However, I expected the redirection to be based on permission groups, and the more general permission group, which all the users are members of, should have lower priority.

The All Users permission group is the default and should have lower priority.

Happy to help!

Yes I agree, logically there should be an "ordering" of levels of priority

This is a new feature so I can definitely give you feedback to our engineering team and hopefully they can allow for multiple landing pages with redirects controlled by the permission groups!

Just wanted to chime in that we are also running into this issue. We would like to have a hierarchical structure for the landing pages, or at the very least, a separate landing page for users who ONLY are members of the "All Users" group, and not members of any other groups.

In this scenario, most users would go to the normal landing page (in our case we wrote a custom app that has a list of all the apps they have permissions to). But those users who are ONLY in the "All Users" group (meaning their account was created in Retool but we have not yet assigned them permissions to any apps) would go to a special "Request Access" app (or just get a message saying they need to contact support).

Thanks for passing this info along to the engineering team!

Hi @GaDwags88,

Thank you for sharing the feedback! I completely agree, it will be great to have a hierarchy of landing pages or at least be able to split users between "All Users" group members and everyone else.

Will pass this along to our engineering team!