can't figure field level permissions

Collapse
X
 
  • Time
  • Show
Clear All
new posts
  • tothewine
    Active Community Member
    • Jan 2018
    • 373

    can't figure field level permissions

    How do I setup a role to allow reading of a scope, but disallow editing of all fields except one?

    I tried setting read all and no edit then add editable fields but it will deny edit for all scope.

    I suspect I will have to grant all and then disable access to all except my field, but it is quite a tedious task... maybe there is a faster way
  • eymen-elkum
    Active Community Member
    • Nov 2014
    • 472

    #2
    To do so you have to give the edit permission to the scope (not read), then at the fields you disallow editing for all fields except for that one.
    CEO of Eblasoft
    EspoCRM Expert since 2014
    Full Stack Web Developer since 2008
    Creator of Numerous Successful Extensions & Projects​

    Comment

    • tothewine
      Active Community Member
      • Jan 2018
      • 373

      #3
      How do I give edit permission without read? The interface only allows edit if there is read access. <- it's bugging me now

      Comment


      • eymen-elkum
        eymen-elkum commented
        Editing a comment
        You have to give it both the read and edit permission in the scope level

      • tothewine
        tothewine commented
        Editing a comment
        an era of tedious manual work is on me then
    • tothewine
      Active Community Member
      • Jan 2018
      • 373

      #4
      In the end I had to set all field permissions explicitly for all the fields. It worked, but it was a very tedious work and I wish yuri provided a way for making this work more smoothly.

      Comment

      • emillod
        Active Community Member
        • Apr 2017
        • 1405

        #5
        Originally posted by tothewine
        In the end I had to set all field permissions explicitly for all the fields. It worked, but it was a very tedious work and I wish yuri provided a way for making this work more smoothly.
        I think it's the best approach. Maybe you could offer some other approach which is better?

        Comment

        • tothewine
          Active Community Member
          • Jan 2018
          • 373

          #6
          Originally posted by emillod

          I think it's the best approach. Maybe you could offer some other approach which is better?
          I think a script or something could be made to add readonly permissions to every field and then "unlock" the needed ones manually

          For espo code it would be to inherit sscope permission into field level permissions for visibility of fields. e.g. like I expected it to work: you deny permissions on the scope and allow specific fields

          Comment

          Working...