Understanding table ACLs

Go to solution
Michael Searle
Tera Guru

‎09-01-2022 09:40 AM

I'm trying to improve my understanding of table ACLs but feel I'm missing something.

I created the ACL rule shown below. I expect the person with the specified role to have access to the 65 records that match the condition. It seems, however, that the person has access to all the records in the table.

What am I missing or misunderstanding?

find_real_file.png

Labels:
Preview file
23 KB
0 Helpfuls
  • 6,517 Views
1 ACCEPTED SOLUTION

Go to solution
Yousaf
Giga Sage
In response to Yousaf

‎09-01-2022 09:45 AM

So it means when a user  has that role you entered in the role section first condition is true 

after that condition will be evaluated if thats true and there is no script it means user will have access

If you will add script all three of them will be evaluated before giving access

 

Mark Correct or Helpful if it helps.


***Mark Correct or Helpful if it helps.***

View solution in original post

8 REPLIES 8

Go to solution
Yousaf
Giga Sage

‎09-01-2022 09:43 AM

Hi,

This condition is not for restriction restriction part is above the roles section

all of these three sections
1. Roles

2. Condition

3. Scripting 

 Are evaluated and if all returns true then a user will have access


***Mark Correct or Helpful if it helps.***
0 Helpfuls

Go to solution
Yousaf
Giga Sage
In response to Yousaf

‎09-01-2022 09:45 AM

So it means when a user  has that role you entered in the role section first condition is true 

after that condition will be evaluated if thats true and there is no script it means user will have access

If you will add script all three of them will be evaluated before giving access

 

Mark Correct or Helpful if it helps.


***Mark Correct or Helpful if it helps.***

Go to solution
Michael Searle
Tera Guru
In response to Yousaf

‎09-01-2022 10:08 AM

Thank you for answering Yousaf. May I ask a follow-up question? (Please forgive me, I'm not feeling well, and my brain isn't fully functional.)

I intend for persons with the given role to be able to read records where the field u_residence_hall equals "yes." I think you're saying I didn't configure the condition section of the ACL rule correctly to achieve the desired result.

Here's the complete view of the ACL. If I want the person with the role to have the ability to read the records matching the condition, but no other records, how do I need to configure the ACL?

Thank you!

find_real_file.png

Preview file
150 KB
0 Helpfuls

Go to solution
Yousaf
Giga Sage
In response to Michael Searle

‎09-01-2022 11:21 AM

Hi Micheal,

No problem at all you can ask as many question you want happy to help.

Ok well problem here from what i think is that you have selected None in the field 
Where you should have selected the  *

None is the table level restriction and * is the field level. And when you want to restrict any specific field then you select that fields Name. 

Please try with * instead of None and let me know if it doesn't solve your problem.

 

Do Mark my first answer Correct and helpful if and when its applicable to close the thread.


***Mark Correct or Helpful if it helps.***