Expand my Community achievements bar.

SOLVED

How to assign write permsiison in sysfilters for operators and operator group who are not part of admin named right

Avatar

Level 3

Hi All,

please help

 

How can we  assign write permssion in sysfilters for operators and operator group who are not part of admin named right

 

i know for admin it can be assigned like

<sysFilter name="writeAccess">
 <condition enabledIf="hasNamedRight('admin')=false" expr="FALSE"/>
</sysFilter>

 

1 Accepted Solution

Avatar

Correct answer by
Community Advisor

Hi @jefrii ,

Create a new named rights and  assign it to the operator and operator group whom you want to provide write access.

And in Schema, provide the following syntax

<sysFilter name="writeAccess">
 <condition enabledIf="hasNamedRight('newlyCreatedNamedRights')=false" expr="FALSE"/>
</sysFilter>

 If you want to add several conditions to allow different named rights, you can use boolOperator

  • boolOperator (string): if several <conditions> are defined within the same <sysfilter> element, this attribute lets you combine them. By default, the logical link is between <condition> elements is “AND”. The “@boolOperator” attribute lets you combine “OR” and “AND” type links.

View solution in original post

4 Replies

Avatar

Correct answer by
Community Advisor

Hi @jefrii ,

Create a new named rights and  assign it to the operator and operator group whom you want to provide write access.

And in Schema, provide the following syntax

<sysFilter name="writeAccess">
 <condition enabledIf="hasNamedRight('newlyCreatedNamedRights')=false" expr="FALSE"/>
</sysFilter>

 If you want to add several conditions to allow different named rights, you can use boolOperator

  • boolOperator (string): if several <conditions> are defined within the same <sysfilter> element, this attribute lets you combine them. By default, the logical link is between <condition> elements is “AND”. The “@boolOperator” attribute lets you combine “OR” and “AND” type links.

Avatar

Level 3

 

@ParthaSarathy 

 

1.this way only only operators who have 'newlycraetednamedrights' will be able to acess this schema data right?

rest other operators wil lnot be able to acess this schema data??

 

2.what will happen to other operators /operator group who dont have this 'newlycraetednamedrights' .-thye will not be able to see the data in schema

for them how scheam looks like

a)will they be able to see fileds of that schema,??

b)will they be able to see data of that schema,??

3.in this way(u mentioned above )only operators who have  'newlycraetednamedrights' will be able tosee the data/schema fileds??

 

how about admin users, what thye will be able to see or what they will not be able to ??

 

do we need to write this code like this always??

 

<sysFilter name="writeAccess">
<condition enabledIf="hasNamedRight('newlyCreatedNamedRights')=false" AND "hasNamedRight('ADMIN')=false Expr="FALSE"/>
</sysFilter>

Avatar

Community Advisor

@jefrii ,

1) Operators who has namedRights 'newlyCreatedNamedRights' or 'admin' can able to write (Insert or update) the data in the particular schema.

2) As you have given name="writeAccess", the other operators and operator groups without the namedRights 'newlyCreatedNamedRights' or 'admin' can able to see the records and fields, but they cannot write (Insert or update) the data in the particular schema.

3) Admins can able to write data by default. To provide write access to operators/operator groups who has namedRights 'newlyCreatedNamedRights' or 'admin', use the below script inside the element tag

    <sysFilter name="writeAccess">
      <condition enabledIf="hasNamedRight('NewNamedRights')=false" expr="FALSE"/>
    </sysFilter>

I would suggest you to create a test schema and 2 test non-Admin operator with and without namedRights 'NewNamedRights' in your lower environment or in sandbox and implement the above scenario and test it to have a clear picture!