Question
Access Rights
recordpermission
Sales_Creatio
8.0
How to remove record permission for old owner when owner gets changed in lead?
Profile picture for user pavankumar.manne
Pavan Manne
14:10 May 04, 2023

Hello community,

I have a use case where i need to grant access rights to new owner in Lead when the owner gets changed.I want to remove the access rights of the old owner.

By default, Creatio grants maximum access permissions to record author and the record owner.

I have tried to give access to the new owner and revoke the access permission to old owner using Change access right Business process element . Since the old owner is the record author ,that user can able to see ,edit,delete the record .I want to remove the access rights of the old owner. 

Can anyone help me on this ?

Like 0

Like

1 comments
Profile picture for user a.blinova
Alla Blinova
20:23 May 09, 2023

Hi!

 

If you remove all roles/users from default permissions (managed by records access rule settings), users who created the record and records owner will still be able to see/edit/delete the record. 

 

To change this behavior, there are several options: 

- open the record in the System Designer and set the rule for the author to grant himself the rights for "not reading" the record

 

- the database command to remote the specific rights in the sys[object]right table. You can check some details on the example of granting the rights and change the logic of the provided script: https://community.creatio.com/questions/there-way-provide-record-creato…

Here are some more details on how these system tables impact the record permissions: https://community.creatio.com/articles/what-database-tables-should-i-ta…

- design a business process with the "Change access" element to remove the rights from the record author

 

Hope this info helps you with the described case.

Show all comments
Question
delete records
permissions
recordpermission
Sales_Creatio
8.0
Block deletion of data records for every role and group
Profile picture for user m.kumpfmueller
Markus Kumpfmüller
17:53 Feb 02, 2023

Dear Community,

 

is there any way to block the deletion of records of an object for all users and user groups (including system administrators and the supervisor) depending on a lookup value, such as a status.

Adjusting the object permissions still let's sysadmins delete a record.

 

Like 0

Like

1 comments
Profile picture for user d.vovchenko
Dmytro Vovchenko
11:43 Feb 07, 2023

Hello Markus,

You can write your own EventListeren on onDeletnig event and if your condition is satisfied, you can call base.OnDeleting(sender, e).

If not, it will block the delete action no matter who is the user.

public override void OnDeleting(object sender, EntityBeforeEventArgs e) {
				var entityOrderProduct = (Entity)sender;
            	var OrderProductid = entityOrderProduct.PrimaryColumnValue;
				string name = entityOrderProduct.GetTypedColumnValue<string>("Name");
				if (name != 'someting'){
					base.OnDeleting(sender, e);
				}
			}

 

Show all comments
Question
contact_filter
lookup
recordpermission
Studio_Creatio
7.18
Filtering contact lookup based on record permissions
Profile picture for user sk.samal1
Sourav Kumar Samal
11:11 Sep 08, 2022

Hi Community,

 

We have enabled record permission for an object and based on some conditions we are adding role wise permissions to the record. We want to filter a contact lookup field based on the roles to whom the record has access, i.e. only those contact will show whose associated user falls under the roles to which the particular record has access.

 

Any suggestions or lead will help a lot.

 

Thanks,

Sourav Kumar Samal

Like 0

Like

2 comments
Profile picture for user a.kalimbet
Kalymbet Anastasia
14:16 Sep 12, 2022

Hello,

 

To read more information about the permission access and role please refer to these Academy articles: Object operation permissionsFunctional rolesRecord permissions

Profile picture for user sk.samal1
Sourav Kumar Samal
14:19 Sep 12, 2022

Kalymbet Anastasia,

 

Thanks for the suggestions.

 

But we are looking to filter a contact lookup based on the roles to which the particular record has access. If there are any suggestion specific to this business task, that will be great.

 

Regards,

Sourav

Show all comments
Question
recordpermission
Object Permissions
Record Permission Issue
Profile picture for user ANUPAMA K
Anupama
03:58 Mar 13, 2022

Hi Team,

 

We have this case where in to a custom Object - Project, Record permission is set to 2 specific user roles. 

  • One user role, lets say A has the right to read 
  • Second User role, lets say B has the right to edit with "Granted with Right to Delegate"

The Use case is: The Object Project has a detail called Sub-Project which is again mapped with Project object but the relationship is child-parent. 

 

Whenever a user of role creates a sub-project, fills in the required details and Click on Save, they encounter with below screenshot error message. But if we refresh the same page and again re-add the required field values, save it. It saves with no error message.

 

In our investigation, we found that whenever we disable the record permission, we don't encounter this validation. We even tried eliminating the user roles added in the record permission one after another with all probability, but it did stopped throwing the validation message until it was disabled which is not as per our functional requirement. Also to be noted, this behaviour is only observed in Sub-Project. In Projects, it works fine as expected.

 

What could be the cause for this behaviour? There as well no validation written on the edit page of that detail - Sub-Project.

 

It would be great if you could direct us to solution to fix this

Like 0

Like

0 comments
Show all comments
Subscribe to recordpermission