Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

  • Congratulations Andrzejek on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Security Problem 1

Status
Not open for further replies.

pechettysuguna

Programmer
Oct 11, 2001
39
JP
Hi,

Form 1-> Employee (document type)
Form 2-> Monitory plan of employee(response type)
Form 3-> Techical CV (response type)

Role 1 -> HR
Role 2 -> QM

Only HR Role should do add & modify Form1 and all other users should be a reader.
QM role should add & modify Form 2 & Form 3.
What I Tried ?
--------------
ACL - HR user & QM user given Editor
Form 1 -> Form Security(selected HR role)
Form 2 -> Form Security(selected QM role)
Form 3 -> Form Security(selected QM role)
Result -> HR & QM able to access all the forms
--------------
ACL - HR user & QM user given Author
Same role as above
Result -> HR forms work properly
But Form 2 & form 3 being a reponse form, Employee's name, DOJ etc. called from Form1, gives error.
--------------
What best can be done for giving good security?
Can i add a rolename in the author field? if yes, how?

Hope so I tried to explain my problem.
Pls help
 
Okay, let me try to sort out my answers :

1) Yes you can put a role in the Author field. Just use the name of the role (with the square brackets).

2) Obviously Editor access is not a good thing for all users, but Author access does not restrict reading document information. Check and ensure that the people with Author access also have the right to create documents if they are to create responses.

Pascal.
 
1) added "
" in the default value of the author field(with the quotes). But it is not working.

2) Thanks for this confirmation(ie.Editor access is not a good thing for all users). My application is almost in the completion stage but struggling with the security.

If i give a author access to create a document for response document creator(QM - form2), than they can also modify the document(ie. HR - form1). Used this formula while creating response form:
[@If(@IsNewDoc; e00_no; @GetDocField($Ref; "e00_no"))]

If they(QM -form2)gets rights on (form1), any other way to restrict the same.

thanks..
Suguna

 

" not working - are you working on a local copy, or testing on a server ? If the db is on the server, the ID you have has the role and the field is an Author field, it should.

Pascal.
 
Status
Not open for further replies.

Part and Inventory Search

Sponsor

Back
Top