Field Level Permission Management

Field restriction on the basis of Roles can be simply controlled with the help of Permission Levels (Perm Levels). This is a very popular feature in companies due to the fact that it enables the administrator to decide precisely which users have permission to view or edit particular fields of a document.

By setting up Perm Levels and assigning them to Roles via the Role Permissions Manager, you can set specific fields read-only, hidden, or editable based on business requirements.

Scenario Example

Suppose an organization does not wish its Employees (Accounts Users) to modify the Rate of an Item when making a Sales Invoice. Users editing rates at will can cause inconsistent pricing, as well as accounting problems. The system must then make sure that the Item Rate is automatically retrieved from the Price List and only visible, not editable.

This limitation can be done very simply by field-level permission management via Perm Levels.

1. Customize the Field

  1. Navigate to Customize Form.
  2. Choose the DocType as Sales Invoice Item, as Item Rate is a field in that child table.
  3. Click on the search button and find the Item Rate field in the list and open it to see its properties.
  4. The input in the Perm Level field should be something such as "2" (any other number but 0).
  5. Click save.

Field Level Permission

In so doing, the Item Rate field has been detached with the default permission level (0) and can henceforth only be accessed with a specific permission rule.

2. Establish the Permission Rule

  1. Go to Role Permissions Manager.
  2. Select Add a New Rule.
  3. Select the Document Type to be Sales Invoice Item.
  4. Select that Role Accounts User as.
  5. Use Perm Level as "2".
  6. Give this position Read access only at this level.

Field Level Permission

The users with the _Accounts User role can see the field but not change it.

3. Permission Rule Display

When we save the rule, a new row will appear in the Role Permissions Manager like down below:

Field Level Permission

  • Document Type: Sales Invoice Item
  • Role: Accounts User
  • Perm Level: 2
  • Permitted Access (as defined in the GDPR): Read

Field Level Permission

This is in order to protect the Item Rate field and make it secured in account users with a higher level of control on certain pricing data.

4. Result in Sales Invoice

An Accounts User, on making a Sales Invoice now:

  • The Item Rate field will automatically get filled as per the Price List.
  • The field will not be editable, the user will not be able to manually update the value in the field and the field will be read-only.
  • This not only dictates the pricing policies to be applied in the organization but the user can still view the rate.

Field Level Permission

Visit Us Here

Discard
Save
Draft

Previous Page

Left

Next Page

Right

On this page

Review Changes ← Back to Content
Message Status Space Raised By Last update on