I've created a role that has View All Records permission on a specific table. However, I only want users in this role to see a couple of the fields in this table.
According to this help page: http://www.quickbase.com/help/default.html#about_restricted_fields.html
...I should be able to achieve this. Except it appears to not work as advertised.
I go to the Permissions section of the Role properties. Under Fields, I click Custom Access and set all fields to have None access except the couple fields I need to have View access.
When I switch to impersonate that role, I can still see all records and all fields in the table. Also, when I use the QuickBase HTTP API, the doQuery function returns all rows and all fields.
By the way, I also tried setting the table-level role permission to None (instead of View All Records), but that doesn't let me see any records.
As discussed in this forum post here, the Test As Role will not replicate field level permissions.
When you're testing while logged in as the user, there just has to be a situation where that user ID is in multiple roles and the other Roles do not have these field level restrictions. Keep in mind that QuickBase always endeavors to give the most access possible when a user is in multiple roles.