Conditional data restrictions

Data restrictions can be conditional or unconditional. You can restrict access to data for a user or user group. The data can be hidden, read-only, or required.

You can use these methods to restrict a user's access to data:

Data restrictions are configured in the Security Groups application. You can also set data restrictions for attributes in objects, either with or without a specified application. Data restrictions that are applied to an object do not apply to views of the object. You must create a separate restriction for the object view.
You can apply conditions to objects to hide them, to make them required, or to make them be read-only. You can apply the condition for every user, or just to a particular security group. Objects or objects within the context of an application can also be associated with a condition to determine what data is shown in the application. Only data that satisfies the condition is returned when the database is queried.
You can also apply conditions to attributes within objects, either with or without an associated application. When you view records in an application, the evaluation of conditions can change the presentation of controls bound to objects or attributes with conditional restrictions applied.
You associate objects or attributes with conditions in the Security Groups application.
If you apply multiple conditions, the conditions are joined by an OR operator when they are evaluated.
You can apply two or more conditions joined by an AND operator to an object or attribute. You can append the second and subsequent conditions to the first one with an AND function between them.
As an application developer, you are implementing a data restriction that causes information about an asset to be shown on the UI. The asset is shown if the following conditions are met: You create two conditions in the Condition Expression Manager: You append Condition 2 to Condition 1 with an AND operator:
iscalibration=1:and exists (select 1 from assetmeter where assetnum = :assetnum and orgid =:orgid)
You apply the appended condition to the required asset object or attribute.


Feedback