Forum Discussion

MattStephens's avatar
MattStephens
Qrew Cadet
2 years ago

Allow child tables to lookup parent data even when user does not have permission to view parent.

Override sub-field access I like this field setting: Use the access permissions above even if they are less restrictive than those of the sub-fields Sub-fields are the fields used to ca...
JohnCrosland's avatar
JohnCrosland
Qrew Trainee
2 years ago

Unfortunately, I think that you're stuck with those options. For option 3, I would say that you can limit the risk of exposing other customer's data by limiting the reports and forms that the Customer Role has access to.

I have a many-to-many table set up that drives my user permissions. If I were to make either parent restricted, then the permissions break. So, I just hide the reports and forms from the users for those tables.

Good luck!
John



------------------------------
John Crosland
------------------------------
  • MattStephens's avatar
    MattStephens
    Qrew Cadet
    2 years ago
    Thanks John, I think I will go with your suggestion of limiting report and form views. Especially since the I expect the app to grow on complexity, requiring more and more automatons to keep the withdrawn order up to date. Your suggestion has saved me a few hours today, and possibly days of work in the future. 

    Matt
    NOTICE: This email, if it relates to a specific contract, is sent on behalf of the Beca company which entered into the contract. Please contact the sender if you are unsure of the contracting Beca company or visit our web page http://www.beca.com for further information on the Beca Group. If this email relates to a specific contract, by responding you agree that, regardless of its terms, this email and the response by you will be a valid communication for the purposes of that contract, and may bind the parties accordingly. This e-mail together with any attachments is confidential, may be subject to legal privilege and applicable privacy laws, and may contain proprietary information, including information protected by copyright. If you are not the intended recipient, please do not copy, use or disclose this e-mail; please notify us immediately by return e-mail and then delete this e-mail.

    Sensitivity: General



    • AdamKrzyzanek's avatar
      AdamKrzyzanek
      Qrew Captain
      2 years ago

      You wrote: I don't want customers to ever be able to see other customers' orders

      In role you can restrict it in a way to show to you customers only data associated with them. It means you need to create separate roles for them, or manage roles via "access table" but it is doable.

      I am doing it in my app, used by over 1000 people, and many external partners. Unfortunately because of this I am having 166 separate roles (some with similar settings but "filtered" to show specific customer number).

      Also you can hide table from viewing. So user can have access to table but cannot see it (User Interface --> Hide in Table Bar)

      &



      ------------------------------
      Adam Krzyzanek
      ------------------------------