need to create a new role which modify record on user table

Kunal33 · ‎08-21-2023

Create a new Role to enable users that are members of a (new) group to do the following:

Add new entries to sys_user
- excluding User IDs that contain @abc.com

Modify entries to sys_user (including making the record inactive)
- excluding User IDs that contain @abc.com and records that have a non-empty Object GUID

Add new entries to sys_user_group
- ideally enforcing that the type is Customer_Notifications

Add / modify /remove entries in sys_user_grmember for groups of type is Customer_Notifications

Sandeep Rajput · ‎08-21-2023

@Kunal33 Please create the ACLs with following conditions.

1. Create ACL on sys_user table.

Add your custom role in this ACL

2. Similarly create write acl on sys_user table with conditions User ID does not contain abc.com and GUID is not empty. Add your custom role in this ACL.

3. Create the create ACL on the sys_user_grmember as follows. Make sure to dot walk to the type field available on the Group reference field on this table.

Add your custom role in this ACL.

4. Similarly prepare write and delete ACL for sys_user_grmember table.

Hope this helps.

Kunal33 · ‎08-22-2023

I have alreay created ACLs and add my custome role here and added that role in a group and assign that group too one of user but still he is not able to write

Sandeep Rajput · ‎08-22-2023

Did you create ACL on sys_user_grmember table?

Kunal33 · ‎08-22-2023

i have created ACL on sys_user table to create or modify a record on sys_user table

Kunal33 · ‎08-23-2023

I have created ACL on membership table also but not able to edit any thing on user and membership table with our custom role