Jump to content
Claris Engage 2025 - March 25-26 Austin Texas ×

Relationships with restrictions based on Get ( AccountName )

PamRotella

By PamRotella
in Importing & Exporting

 Share

This topic is 5740 days old. Please don't post here. Open a new topic instead.

Recommended Posts

PamRotella Apprentice

PamRotella

Posted
Posted

This is driving me crazy because I know I've done this before a couple of times... How would I use a relationship including a field calculation of Get ( AccountName ) equal to a field where a user's name is stored, to restrict the user to see only their records?

I already know about the alternative of using a privilege set restriction, but that's just plain ugly because the user can see other records, but with a "no access" message, at least until the initial find is executed.

Other than using a portal (which doesn't give us much freedom for reporting), I seem to remember using an intermediary table somehow, and also there was the issue of having no records throwing things off, so sometimes opting for a global field to hold the user name is better.

Has anyone else designed something like this, and what am I forgetting in putting it together? I remember it was design-intensive until it was written, but then it was great because it was all based on relationships that just worked, so we didn't have to adjust scripts & whatnot to keep users out of areas they shouldn't see.

Any input would be appreciated!

Thanks,

Pam

bcooney Grand Master

bcooney

Posted
Posted

How would I use a relationship including a field calculation of Get ( AccountName ) equal to a field where a user's name is stored, to restrict the user to see only their records?

I assume you mean Get (AccountName) equals a field that contains the AccountName that created the record.

You can set a global to Get (AccountName) on startup and then gtrr from the global.

I already know about the alternative of using a privilege set restriction, but that's just plain ugly because the user can see other records, but with a "no access" message, at least until the initial find is executed.

Well, this is the only secure way to do it. Why not just do a find in a nav script? Any find, such as a "*" find will work.

This white paper discusses Viewer tables. I'm not a big fan, but maybe it's what you are remembering..

  • 2 weeks later...
Vaughan Grand Master

Vaughan

Posted
Posted

The "relationships" method won;t stop users form being able to export the other records out, or linking to the database via another file and being able to see everything.

The relationships method is just interface: interface is painting lines on the ground to control where people can go. If you want real security you need to build walls. Record level access restrictions are walls.

This topic is 5740 days old. Please don't post here. Open a new topic instead.

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing
×
×
  • Create New...

Important Information

By using this site, you agree to our Terms of Use.

  I accept