Portal - User profile read only for non admins

shradz1
Tera Contributor

‎06-14-2024 06:42 AM

Hi, 
I am working on CSM portal and need to make user profile non editable for non admins.
I tried it by modifying ACL but nothing seems to work.
To troubleshoot, I have even inactivated all the ACL on sys_user table(table and field level) but still the fields like userID, company are non editable (OOB as expected) and email field is stil editable.

I am not understanding then from where these fields were made read only OOB

Your help will be much appreciated.

 

Thanks

0 Helpfuls
  • 324 Views
1 REPLY 1

Kris Moncada
Tera Guru

‎06-14-2024 05:13 PM - edited ‎06-14-2024 05:14 PM

You'll need to enable Debug Security Rules as an admin.

KrisMoncada_0-1718409708078.png

 

Next impersonate a non admin user and reload the same record. Then click the bug icon.

KrisMoncada_1-1718409932062.png

 

If your record/sys_user.email/write is green and you don't want it to be  , you'll need to now find which ACL (field level) is granting access.  Using the browser search feature, I would search for 

 

record/sys_user.email/write

 

KrisMoncada_2-1718410230734.png

Right click on the ACL to open it in another browser, then investigate why this ACL is granting write access to the field for the non-admin user.

 

Hope this helps. ACL work debugging can be a nightmare to work on sometimes. I usually fall back on some version  of the above steps when diagnosing ACL issues.

 

 

0 Helpfuls