Conditional Permissions on a Record Level
Luci G
Would be cool to be able to set some permissions based on who is assigned to the particular record.
This would allow everyone in a solution to still be able to access some information on the record while keeping some information private to only admins and the person assigned to that record.
Case Study: We use formulas to determine the estimated budget for each task. Once an employee assigns themself to the task, another formula divides the budget by their individual pay per hour to give them an estimated amount of time on how long they have to complete the task.
While we have most of these fields hidden from anyone who isn't management, we would like to also hide the "estimated time" field from anyone who is not assigned to that part of the task.
That said, other aspects of the record should be viewed by other employees.
G
Gady Margalit
Another senario is to handle in the same table Surveys findings
And have different survey findings that I don't want everyone to see,
Like a salary audit, information security audit and a product audit...
Salary reviews only a few people should see
I don't want to create separate tables, because then the users would need to go to many plaves to see things like tasks sorted by sevirety
Or how many open findings there are of each type and severity
Or tasks of an employee of mine named Jone
Or total hours spent on fixing...
Also if I have another table linked to it I'd have several fields for those links :(
Jon Darbyshire
Luci G Just when I think we have permissions figured out, you find another interesting use case that we need to consider. I am thinking about this now and the easier way to support this may be to allow an additional selection on the Field Level permissions page for the selection of an Assigned To field. We would then control View and Edit access to the field based on who is listed in the Assigned To field. Would this cover your usecase?
Luci G
Jon Darbyshire: Yes, that would definitely cover it. I love how field level permissions work in general, but this would definitely be icing on the cake.