+14Hello, IFS community.
Our company has four sites; each of the sites shares the same EU_ROLES permissions.
I wonder if there is a way to set up one of the sites to be read-only access to IFS or read-only to Inventory Transactions, Customer Order, WO without me recreating all the permission set manually?
I will appreciate your advice.
Thanks,
JL
Best answer by VivekBhandiwad
Hi JL
Please find some of my notes, and if this helps , then use the same.
Here are some steps
----recopied from Shawn text, and added a few additional items -----
BEGIN
IF ( ('&NEW:CONTRACT' = 'ABC') and (‘&New:User_id’ in (‘select user_id from ifsapp.end_user_role where End_user_role = ‘ABC_EU_ROLE_Limited_read’)) THEN
Error_SYS.Record_General('CustomerOrder', 'CORAMODERR1: This site is read only, changes are not allowed.');
END IF;
END;
PS: Query will need some more cleanup.
This approach only gives a bit more control over the users, using permission sets, and not by naming each user, in the query.
Refer
How to grant permission sets - for read only.
Regards
Vivek
No, there is no way to make one site read only when the person has access to do transactions in any other site. One of the many sought after features that isn’t present in IFS. You can only control it via monitoring history. You could create a custom logical unit to validate who can do transactions or not in that site, but you would need an event for each different table or module you want to control.
+14IFS Community,
I want to be clear with my question above.
I need to freeze transaction “Read-Only” Inventory Transactions, Customer Order, and WO, except for HR and Finance. I need to apply the read-only to the entire employees that belong to one of the sites. It will be painful to go employee by employee and manually create each EU view only role.
Is there a way to apply a global view only EU Permission to a SITE?
Thanks,
JL
No - you can’t apply profiles or permissions to a site, global or otherwise. They are granted or applied to users.
Here You have got another discusstion regarding this:
You can achive that by two seperate application accounts but it affects license usage.
+22
If you need read only access for handful of objects, one thing you can do is that create event actions on Modify for each object and give an error when someone tries to modify an object.
Eg event action for Customer order:
BEGIN
IF ('&NEW:CONTRACT' = 'ABC') THEN
Error_SYS.Record_General('CustomerOrder', 'CORAMODERR1: This site is read only, changes are not allowed.');
END IF;
END;
Hope it helps!
Damith
+14Hello All,
The workaround that I found was the one described from
I created a custom event that will not allow the users to save.
+8Hi JL
Please find some of my notes, and if this helps , then use the same.
Here are some steps
----recopied from Shawn text, and added a few additional items -----
BEGIN
IF ( ('&NEW:CONTRACT' = 'ABC') and (‘&New:User_id’ in (‘select user_id from ifsapp.end_user_role where End_user_role = ‘ABC_EU_ROLE_Limited_read’)) THEN
Error_SYS.Record_General('CustomerOrder', 'CORAMODERR1: This site is read only, changes are not allowed.');
END IF;
END;
PS: Query will need some more cleanup.
This approach only gives a bit more control over the users, using permission sets, and not by naming each user, in the query.
Refer
How to grant permission sets - for read only.
Regards
Vivek
+14Hello
Your answer is the best.
I do not know how could I change the best answer to yours.
Thanks,
JL
+8Dear
This is nice of you guys. Its Shawn's response itself. Didn't know what to say earlier about best answer, then, and don't know what to say now.
Glad to be of help. Stay safe.
Regards
Vivek
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.
