NF13 Read Access To Tables Not In Role Table Access List

From iDempiere en

Feature: Add READ_TABLES_NOT_IN_TABLE_ACCESS_INCLUDE_LIST AD_SysConfig flag for Role Table Access

Goal: Functional

Developer: Heng Sin

Feature Ticket: IDEMPIERE-6730

Description

When using the Role Table Access Include list (i.e uncheck the Exclude checkbox) for Read Write access, the current behaviour is hard coded as the role has no access to other tables that is not part of the include list. This make it very hard to use as you have to figure out all other tables that the user should have read only access to.

Changes

  1. Add client level READ_TABLES_NOT_IN_TABLE_ACCESS_INCLUDE_LIST AD_SysConfig Y/N entry.
    • N to disallow both read-only and read write access to other tables that's not part of the Role Table Access include list.
    • Y to allow read-only access to tables not in the include list.
    • Default is N to maintain backward compatibility.
  2. Note that you still can use the Role Table Access Exclude feature to disallow access to specific set of tables).
Retrieved from "https://wiki.idempiere.org/w-en/index.php?title=NF13_Read_Access_To_Tables_Not_In_Role_Table_Access_List&oldid=23588"
Cookies help us deliver our services. By using our services, you agree to our use of cookies.
GNU-Lizenz für freie Dokumentation 1.3 oder höher
Powered by MediaWiki