2 Replies Latest reply on Apr 28, 2010 2:52 PM by comment_1

    Relational Table Occurance I think?

    kilbot

      Title

      Relational Table Occurance I think?

      Post

      I have a table where I store all of my records. I have set permission levels down to the user level so that each user can only see records assigned to them. However I want to to create another layout and have all records viewable for each user and just excluded certain fields.

       

      I went in and copied the table that all of my records resided in and related it to the original table. Then I gave the user full rights to those records instead of limited on the original records, but I cannot see all of the files. What am I doing wrong?

       

      Please help feel like I'm in way over my head trying to figure this out

        • 1. Re: Relational Table Occurance I think?
          FentonJones

          The trouble is, FileMaker enforces its record-level security across tables and files (otherwise it wouldn't be security). You cannot get around it by doing something like creating a calculation in a 2nd table, which points back to a field in the 1st table (where the user cannot View that data). The user may have access to the local data, but a relationship to the 1st table is only going hit records where he has access, not to other records which would otherwise match; because the user does not have access to even the ID field of those other records. Hence you're no better off than you were with one table.

           

          I think that the only way to get what you want would be to create a "shadow table", which duplicated, and was synchronized to, the data of the original table; but had only the fields you wanted generally exposed. Doable, but a PITA, especially the synchronization. It may be worth doing for only a few fields; but if a lot,...

          • 2. Re: Relational Table Occurance I think?
            comment_1

            If they are allowed to view the "other" records under some circumstances, then there seems no point in denying access in Accounts & Privileges. Looks like you could solve the entire thing purely through user interface.