Configuring Permissions for Records
You can restrict viewing, editing, or deleting of records to certain users. Restrictions can be set on a per record basis. Using field values as conditions, you can set different permissions for each record.
Steps to set the permissions
Click the App Settings button at the upper right of the "View" screen, select the App Settings tab, and then select Records under Permissions.
Set permission for records.
Click Add Permission Set.
In the Target Records section, specify the condition for the permission setting to be applied to records. You cannot use the following fields for specifying conditions.
- Rich text
- Text area
- Related Records
Under User, Group and Department to Grant Permissions To, specify the users, departments, or groups you want to add, then select the checkboxes under Permissions for the actions you want to allow.
You can also click Add a field for selection, select a field, and then set permissions for the users, departments, or groups specified in that field.
When multiple permission sets are configured for a single user, any permission set that is located higher on the list takes precedence. For example, if you set the permission as described below, only "John Jones" will be allowed to view, edit, and delete target records:
John Jones [✔] View [✔] Edit [✔] Delete Everyone [ ] View [ ] Edit [ ] Delete
To set multiple combinations of target records and permissions, click Add Permission Set again. In the newly added row, configure the setting in the same way as described in Steps 3 and 4.
When there are multiple rows, higher rows take precedence over lower rows. To change the priority order, drag and drop displayed on the left side of the row whose priority you want to change.
Click Save on the bottom right side of the screen.
Click Update App at the upper right of the screen.
On the confirmation dialog, click Update App.
When you complete the steps described above, the permission setting is applied to records.
Tips: Specifying "Created by," "Updated by," or "Assignee" in the setting
You can set permissions for the user who created the record, the user who updated the record, or process management assignees. To do so, specify a field from Add a field for selection.
- Created by: The user who created the record.
- Updated by: The user who last updated the record.
- Assignee: The user who is assigned in the current status for process management.
For example, in an app for which the Process Management feature is enabled, you can configure the setting in such a way that only the "Created by," "Assignee," and "Updated by" users can view records whose status is not set to "Completed."
Tips: Specifying the "User selection" or "Department selection" field in the setting
Specifying a "User Selection" or "Department Selection" field placed on the app form, you can apply the permission setting to a user or department selected for the field in each record rather than to a specific user or department.
To do so, specify a field from Add a field for selection.
For example, you can configure the setting in such a way that only the user specified in a specific "User selection" field (the "in charge of" field) can edit and delete the record.
Combining the setting with the Process Management feature or the "User selection" or "Department selection" field, you can configure permissions more flexibly.