I want to make asset table fields read only for a particular role read only using ACL but somehow it is not happening , could someone please guide me where I am going wrong

rahamathullahmr
Giga Expert

I want to make asset table fields read only for a particular role read only using ACL but somehow it is not happening . I tried read ACL for the table with wildcard search , but it's not working out.

1 ACCEPTED SOLUTION

mloranc
Mega Expert

Hello,


You'll need to make sure that the role can read the record to begin with by having an ACL at the table level. If that checks true, then you can have your wildcard ACL with table.*. The next step would be to check that other ACLs aren't granting access and adjusting them accordingly. Some out of box ACLs to watch out for are the ones that use a current."user_reference field" = gs.getUserID(). Those are usually granting additional access to individuals listed somewhere in the record.


View solution in original post

4 REPLIES 4

Nate23
Mega Guru

Try making an acl based on wildcard and another acl based on none with a script to grab user role and if they have that role to make answer false also to debug you can start the debug acl then impersonate the user and see what acls are running and what they are evaluating to see if you have other conflicting ACLs or if the current ones are even working



Edit: I forgot to mention you want to give the role read only access but you do not want to give them write access. I am not sure if you are having the issue where they can read and write but you only want them to read or if you are having the issue that they cannot read period.


mloranc
Mega Expert

Hello,


You'll need to make sure that the role can read the record to begin with by having an ACL at the table level. If that checks true, then you can have your wildcard ACL with table.*. The next step would be to check that other ACLs aren't granting access and adjusting them accordingly. Some out of box ACLs to watch out for are the ones that use a current."user_reference field" = gs.getUserID(). Those are usually granting additional access to individuals listed somewhere in the record.


randrews
Tera Guru

ok first we need more information.. when you are saying you want to make it read only for a particular role...




do you mean only people with that role can read it.. or do you mean people with the role have read only access to the field?



also it would help if you told us what the current acl you are trying to use reads like


rahamathullahmr
Giga Expert

Sorry gentlemen and raymond.d.mason ,



I will ensure to provide a more comprehensive requirement.



But the good news is I completed the requirement .


1. I created the asset_read role


2.I had created two read ACL


a. table level for Asset (alm_asset) providing the read only role(asset_read) .


b.Wildcard search for Asset (alm_asset) with the role (asset_read).



The mistakes/stuffs which I found :


1. when you are creating a custom role never add any OOB role in contains roles related list.


2.To ensure that a particular module in an application has to be visible for a cusom role ensure that the role is added both to application and module.



Thanks,


Rahamathullah