- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-20-2025 04:43 PM
Hello,
How to make a user be able to write only one specific field on a form? I want that users in say 'Management' group are able to edit solely 'approval_status' field on a form, other fields they shouldn't be able to edit.
I understand that Field level ACL restricts this field to be created/edited/read/deleted by the role specified in the Conditions. So to achieve my goal I could create ACL for Write all the fields apart from 'approval_status' and in Conditions provide, say Admin. This, of course doesn't seem like a best practice.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-21-2025 04:11 PM
I got the solution.
ACL setup:
[Write] my_table Condition/Role: 'x_role.approval_manager'
[Write] my_table.approval_status Condition/Role: 'x_role.approval_manager'
[Write] my_table.* Condition/Role: Admin
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-20-2025 05:01 PM
Hi @ladrian1610
You can create field level ACL write ACL on that particular field (table.approval_status) with the role as snc_internal or ITIL and in the script just use the below
answer= gs.getUser().isMemberOf("GROUP_NAME");
Regards ,
Siva
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-20-2025 05:26 PM
Thank you friend!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-20-2025 05:27 PM
@ladrian1610 Glad it helped
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-21-2025 01:16 PM - edited 07-22-2025 04:43 AM
Hey there again, upon checking your proposition I realised that the outcome is the user that belongs to the group mentioned in the script can write all the fields but not the approval_status.
Solution that works:
ACL | Operation | Type | Condition/role |
table | Write | Table | management |
table.approval_status | Write | Field (approval_status) | management |
table.* | Write | All other fields | admin |
Thus the group with management role can only write the approval_status.