ACL to specific fields not working

luimol · ‎01-27-2017

I have a form that can only be created by one group, let's call it Site_admon. Site_admon group can edit ALL of the fields in that form. There's another group that can only edit some of the fields of that form, let's call it Site_users. I am having problems with the ACL's I created to have Site_users group members edit the fields they're supposed to edit, box1, box2, and box3. The table's name is SITES.

At this point both groups are able to edit ALL of the fields. This is fine for group Site_admon but not Site_users.

The ACL's are created are as follows:

SITES none write Required Roles: Site_admon, Site_users

SITES.BOX1 write Required Roles: Site_users

SITES.BOX2 write Required Roles: Site_users

SITES.BOX3 write Required Roles: Site_users

What am I missing? What do I need to change?

I'll apreciate your feedback.

veena_kvkk88 · ‎01-27-2017

Hi Luis!

You are looking to enforce field level ACLs. For that to happen, you should grant access at the higher level, and the lock down one by one. These are the ACLs that should be in place for the scenario you mentioned to work.

1) SITES none - write - Required Roles: Site_admon, Site_users

2) SITES.* - write - Required Roles: Site_admon

3) SITES.BOX1 - write - Required Roles: Site_users, Site_admon

4) SITES.BOX2 - write - Required Roles: Site_users, Site_admon

5) SITES.BOX3 - write - Required Roles: Site_users, Site_admon

This will give complete write access to Site_admon, but Site_users can only write to the fields BOX1, BOX2 and BOX3.

View solution in original post

veena_kvkk88 · ‎01-30-2017

Also, you marked your reply as helpful..!

luimol · ‎01-30-2017

Thanks Veena. I marked it.

Community Alums · ‎03-14-2024

@veena_kvkk88 Thank you very very Much!! This really was too much helpfull!!

PREVIEW