Resource filtering
In Studio you can create resource filters to conditionally hide certain resources based on SmartAccess tags. You can apply resource filters to:
- All resources in a delivery group.
- All resources of a type (app or desktop).
- All resources with a specific tag.
Citrix Workspace™ generates the following SmartAccess tags that you can include in your filter rules:
| Filter | Value | Description |
|---|---|---|
| Citrix.Workspace.UsingDomain | example.cloud.com | Allows filtering of delivery group resources by Workspace URL. The value is the fully qualified domain name of the cloud.com Workspace URL, even when users access Workspace using a custom domain. |
| Citrix-Via-Workspace | True | Indicates that the end user is using Citrix Workspace, rather than an on-premises StoreFront™ deployment. |
These can be used in conjunction with SmartAccess tags from other services such as the user’s network location.
The Delivery Controller™ applies delivery group access policies first, followed by other resource filters. Each filter can remove further resources and cannot reinstate resources that were removed by a previous filter.
Apply filters to a delivery group
To apply a resource filter to a Delivery Group, edit the delivery group’s Access policy to either modify the existing rules or add additional rules. For more information, see Manage delivery groups.
Note:
If Adaptive Access is enabled then DaaS treats requests from Citrix Workspace as being through Citrix Gateway so you must specify the behavior as Via Access Gateway. If Adaptive Access is disabled then you specify the behavior as Not Via Access Gateway.
Apply filters to all resources of a type
To display only resources of a specific type:
- Add a resource filter with resource type set to App or Desktop.
- Enter the SmartAccess filter conditions.
For example, to hide all apps from external users
Apply filters to resources with a tag
If you wish to hide a subset of the apps or desktops within a delivery group, you can do this using Tags.
Note:
You must tag all of the resources you wish to hide. There is no option to use tags to indicate the resources that you wish to show (i.e. to hide all resources that do not have a specific tag). If you wish to hide newly created resources by default consider using auto tags to automatically tag resources.
- Apply a Tag to the apps and desktops you wish to hide.
- Create a resource filter applying to that tag.
- Enter the SmartAccess filter conditions.
For example, to hide certain apps except from one specific URL:
To hide the apps from one specific URL, you must have an Include rule that covers all URLs, along with an Exclude rule for the specific URL for which you wish to hide the resources:
