Managing Access for Table Records
It’s likely that your database is intended for different users or groups of users (co-workers, partners, or customers), and your business process requires different access to the information for different users. For instance, your database tracks apartment rentals. A realtor or a sales manager needs to be able to add and edit records, manipulating pricing and requests for apartment facilities. But you don’t want them to see each other’s sales commission figures. As a database owner or a chief, you need to see the quantity of deals and revenue, but you don’t want realtors to be able to edit or view these records.
In such a case, the TeamDesk system provides for various groups of users with different access rights. Each user group is called a Role and can have special access rights to table records. There are four possible types of rights that can be applied to table records:
- View records;
- Add records;
- Modify records;
- Delete records.
To set rights for each user role:
-
Click the
Setup
link in the top right corner of the window. -
Click on the table you need.
From the setup menu, select Table
> Manage access for table records
. The system will open the following form:
Use the fields to specify access rights for each user role:
- Allow View
- From the list, select what type of records a certain user group can view:
- All Records: This option means that all existing table records are viewable to a user with a role specified on the left. The formula language equivalent is the boolean value True.
- Own Records: Users with a specified role can view only their own records. Every record keeps a Record Owner column. This value is assigned when a record is created. By default, the name of the user who created this record is registered as the record owner. The formula language equivalent for the Own Records option is [Record Owner]=User().
- Controlled by xxx: To simplify record access adjustment, the "Controlled by xxx" option is available in the details tables participating in the Many-to-One relation. Any many-to-one reference column from a details table is listed as "Controlled By xxx," which allows you to inherit record access from the parent record. The formula language equivalent is Exists([xxx]), where [xxx] is a reference column name.
- None: If this option is chosen, no access is provided to the records for the role. The formula language equivalent is the boolean value False.
- Custom Rule: Select this option to expand a supplementary field below the drop-down list; enter the necessary formula* into the field.
Please note that only viewable records can be modified or deleted by a user.
- Allow Modify
- From the list, select what type of records a certain user group can modify:
- All Viewable Records;
- Own Records;
- None;
- Custom Rule (select this option to expand a supplementary field below the drop-down list; enter the necessary formula* into the field).
- Allow Add
- Specify if a certain user group can add records to the table:
- Select Yes to allow adding records;
- Select No to prohibit adding records;
- Select Custom Rule to expand a supplementary field below the drop-down list; enter the necessary formula* into the field.
- Allow Delete
- Select what type of records a certain user group can delete:
- All Viewable Records;
- Own Records;
- None;
- Custom Rule (select this option to expand a supplementary field below the drop-down list; enter the necessary formula* into the field).
When finished, click Save
to apply specified access rights. Click Cancel
to discard changes.
* You can generate a formula using the Filter option in the View.
First, create a View, activate the "Only records that meet certain criteria" option in the Filter section and indicate necessary criteria, then Save this view.
Reopen the created View and activate the "Custom formula" field; after that, the necessary formula will be generated. Copy this formula and Paste it into the Custom Rule.Please notice that
Table Records Access
does not affect Workflow Actions. Only the access to a custom button or a trigger comprising the action is taken into account by the system.