Which ACL is needed for sc_req_item.order_guide field?

snow_beginner · ‎03-06-2024

Hi,

I have a requirement that the field 'order guide' on sc_req_item should be read only unless the person has the role catalog_admin or is admin.

I have created a write and read ACL for this requirement.

I then created a test user and just gave it catalog_admin role but when I impersonate this user and check the form I can see the entire form is read only for me. As admin it's fine.

There are also lots of ACL on this sc_req_item table. Do I need the create ACL too?

Sandeep Rajput · ‎03-07-2024

@snow_beginner Can you create an ACL with the configuration highlighted below.

And see if it works for you.

View solution in original post

Sandeep Rajput · ‎03-06-2024

@snow_beginner You have created field level ACL on order_guide field on sc_req_item table. Could you please check if there are table level read and write ACLs created on sc_req_item table for catalog_admin user. Unless user has table level permissions, the field level ACLs will not be evaluated.

snow_beginner · ‎03-06-2024

Hi, there is a create ACL for this table with none, should it be * instead?

I also created a create ACL with this role for this field, is that fine to do? At the moment I have not made it active, but what would be best? to change the above with * or activate the one I made

there is a write ACL too but it does not have the catalog_admin role in it, should I add the role to that instead?

do we need both read AND write table level ACL?

snow_beginner · ‎03-07-2024

Hi @Sandeep Rajput I am still not sure which ACL is required from the below. I activated the create ACL for sc_req_item.order_guide but still the problem persists that my test user which has catalog_admin role is seeing the entire form as read only.

Sandeep Rajput · ‎03-07-2024

@snow_beginner Can you create an ACL with the configuration highlighted below.

And see if it works for you.