Configuring Permissions for Records

Article Number:040595

You can restrict viewing, editing, or deleting of records to certain users. Restrictions can be set on a per record basis. Using field values as conditions, you can set different permissions for each record.

Steps to set the permissions

  1. Click the app settings button Setting button at the upper right of the "View" screen, select the App Settings tab, and then select Records under Permissions.
    The App Settings button

  2. Set permission for records.
    Click Add. Adding permission for records

  3. In the Target Records in Priority Order section, specify the condition for the permission setting to be applied to records. Specifying the Target Records You cannot use the following fields for specifying conditions.

    • Rich text
    • Text area
    • Attachment
    • Related Records

  4. In the Assign Permissions for Users, Groups, and Departments section, select a user, department, or group, and then select the check boxes for the actions you want to allow.
    You can also select a field from the Add a field for selection drop-down list to set permission for the user, department, or group specified in the field. Configuring the "Assign Permissions for Users, Groups, and Departments" section
    When multiple permission sets are configured for a single user, any permission set that is located higher on the list takes precedence. For example, if you set the permission as described below, only "John Jones" will be allowed to view, edit, and delete target records:

    John Jones [✔] View [✔] Edit [✔] Delete
    Everyone [  ] View [  ] Edit [  ] Delete
    If you specify a department and select the Permissions inheritance check box for the department, the same permission setting is applied to users who belong to its sub-departments.
  5. To set multiple combinations of target records and permissions, click Add again. In the newly added row, configure the setting in the same way as described in steps 3 and 4.
    When there are multiple rows, higher rows take precedence over lower rows. To change the priority order, drag and drop priority change icon displayed on the left side of the row whose priority you want to change.
    Screenshot: The "Add" button and the priority change icon are highlighted

  6. Click Save on the upper left side of the screen. Save

  7. Click Update App on the upper right side of the screen.

When you complete the steps described above, the permission setting is applied to records.

Tips: Specifying "Created by," "Updated by," or "Assignee" in the setting

You can set permissions for the user who created the record, the user who updated the record, or process management assignees. To do so, specify a field from Add a field for selection.

  • Created by: The user who created the record.
  • Updated by: The user who last updated the record.
  • Assignee: The user who is assigned in the current status for process management.

For example, in an app for which the Process Management feature is enabled, you can configure the setting in such a way that only the "Created by," "Assignee," and "Updated by" users can view records whose status is not set to "Completed."

Screenshot: An example setting where permission is set for "Created by," "Assignee," and "Updated by" users

Tips: Specifying the "User selection" or "Department selection" field in the setting

Specifying a "User Selection" or "Department Selection" field placed on the app form, you can apply the permission setting to a user or department selected for the field in each record rather than to a specific user or department.
To do so, specify a field from Add a field for selection.

For example, you can configure the setting in such a way that only the user specified in a specific "User selection" field (the "in charge of" field) can edit and delete the record. Screenshot: An example setting where permission is set for a "User selection" field

Combining the setting with the Process Management feature or the "User selection" or "Department selection" field, you can configure permissions more flexibly.