How to give write permission (with ACL or not) to a reference field on company table?

Community Alums
Not applicable

‎02-14-2020 07:37 AM

Hello Community!

I'm trying to allow users to change reference read-only fields on core_company table but I can't do it.

For example, the "street" field is a reference from cmn_location table street field. I tried to allow the user to read and write (with ACL) all the cmn_location table but even that doesn't allow the users to edit the that reference field on the core_company, it's still ready-only (but not for me since I'm an admin).

Do you have any suggestions on how I could do this?


Thank you all!

 

Pedro

find_real_file.png 

find_real_file.png

Preview file
13 KB
Preview file
12 KB
0 Helpfuls
  • 3,015 Views
6 REPLIES 6

Jagadeesh1
Kilo Guru

‎02-14-2020 08:54 AM

Hello Pedro,

 

         Use debug security option as an admin and open the form by impersonating as user. Once the form loads in browser you will get the logs and ACL list at the bottom of the form. Now on broswer select ctrl+F and search for core_company/write, you can find the ACLs that are written for write access. Search for core_company.u_main_location , it will highlight the write ACLs for the field. If any one of them has all the circle marks checked, it means the user has write access to the table or field. You can debug the ACLs that are having 'x' mark, these are not allowing the user to have write access. If any of the ACLs present on field or table has check marks, user has write access.

If ACLs are allowing them to update the field, check for UI related configurations like Data policies , UI policies and client script

 

Thanks,

Jagadeesh

0 Helpfuls

Brian Lancaster
Tera Sage

‎02-14-2020 09:48 AM

Ok I just tried this in my PDI which only had the OOB ACLs in it.

1. Created the field Main Location

2. Created a role to use for main location.

3. Created an ACL core_company.* (write) and the only role was user_admin.

4. Updated the ACL for core_compan (write) and added the role I crated in step 2.  Best practice would be to create a separate ACL instead of updated OOB ones.

5. Created an ACL core_company.u_main_location (write) with only the role I created in step 2 having access.

Screenshot from user with the role I created in step 2.

 find_real_file.png

Preview file
27 KB