cancel
Showing results for 
Search instead for 
Did you mean: 

IBP: read & write authorization based on attributes

ismo
Discoverer
0 Kudos
287

Hello,

We have the following problem: There are planner groups of which each agent can see the group's customer data, but can only edit his own. This is to be controlled via the attribute Sales representative. For this purpose there is a separate role. For this role there is a setting with an authorization filter in the read permission, which contains all sales representatives of this group. This works. We also use a scheduling filter that contains all representatives of the group.

How to make sure that the write permission is only for the customer data with own sales representative without creating a separate role for each user?

Thanks & regards,

Ingrid

Accepted Solutions (0)

Answers (2)

Answers (2)

ismo
Discoverer
0 Kudos

Hi Jorge,

the permission filter does not help for the write permission in this case. The users should have write permission only to customers related to their own sales representive. For this I can create a permission filter with attribute Sales Rep = User. But if I assign all permission filters from every user to the role, every user could change also the data from the other users due to the fact that the permissions will be cumulated. Is there any other solution instead of creating a separate role for each user?

Thanks & regards,

Ingrid

0 Kudos

Hi Ingrid, if I understood correctly your scenario you're able to achieve this through Permission Filters. If this is not the case, kindly provide more informatino regarding your needs.