Skip to main content
Solved

Inherited Access Rights for Form Elements


I’m having difficulty controlling access to particular form elements. The behavior I’m observing runs contrary to the guidance provided by the Acumatica wiki and training manuals. Currently using Acumatica Cloud ERP 2020 R1, Build 20.114.0020.

 

The wiki says that:

“By default, a role’s access rights to the form elements and actions are inherited from the role’s access level to the container of form elements to which elements and actions belong.”

 

This is echoed in the security training manual:

 

But it seems that form elements (tier 5) actually inherit their rights from the Form (tier 3), rather than the Container (tier 4). This breaks the “hierarchy of nesting” outlined above, and makes controlling access to particular form elements much more difficult.

 

Is this a bug, is the documentation wrong, or am I misinterpreting something?

 

Example:

Form: [Receivables -> Customer Locations] node is set to "View Only".

 

Form Container: [Receivables -> Customer Locations -> Location] node is set to "Edit", with the Applied to Nested option selected.

 

Form Elements: [Receivables -> Customer Locations -> Location -> xxxx] nodes have all inherited the "View Only" access rights from the Form-level.

 

Best answer by damonb56

Thanks for the responses, everyone.

 

I received an update from Acumatica stating that the issue should be resolved in the latest build of 21R1, though they didn’t confirm the nature of the problem or describe how it would be addressed.

 

@jinin -
The issue I’m trying to describe occurs when I specify different levels of access rights at the form-level and the form container-level. (In this case, Form = Receivables -> Customer Locations; Form Container = Receivables -> Customer Locations -> Location).

 

@ChandrasekharM -
The “Access Rights by Role” screen only displays that rights are “inherited”, without displaying the final value.


For example, in the screenshots below, the “Access Rights by Role” screen displays that permissions for the [Receivables -> Customer Locations -> Location -> Cancel] node are “Inherited” for the selected role. But if you view that same node using the “Access Rights by User” screen, it will display the actual value (e.g., “View Only”) that was inherited by a user assigned the role in question.

 

 

 

@vkumar -
There was a user selected in the screenshot I originally posted, but I removed the text as to not reveal their email address.

View original
Did this topic help you find an answer to your question?

7 replies

  • Author
  • Freshman II
  • 5 replies
  • November 2, 2021

Still hoping for an answer here... Let me know if i can clarify anything.


Chris Hackett
Community Manager
Forum|alt.badge.img
  • Acumatica Community Manager
  • 2640 replies
  • November 2, 2021

Any quick ideas here for @damonb56 ? Thanks!


jinin
Pro I
Forum|alt.badge.img+11
  • Pro I
  • 680 replies
  • November 29, 2021

Hi @damonb56 

I did the below steps and able to get the access right correctly.

  1. Created a user with ARViewer Role.
    1. In the Access rights by Screen, selected the Edit option 
      1. Access Right By User screen showing the Access Right as Edit correctly.
         

 

Hope this will help you.


Forum|alt.badge.img+9
  • Semi-Pro I
  • 714 replies
  • November 29, 2021

Hi @damonb56 Please share the screenshot of “Access Rights by Role” for the AR Viewer role, so that we can take a quick look.

Thanks


Forum|alt.badge.img+11
  • Acumatica Support Team
  • 785 replies
  • November 30, 2021

Hi @damonb56 

The screen where it reflects ‘View only’ for Customer location Form elements is Access rights by User and no user has been selected. It should give you correct values when you select an user who has AR Viewer access role assigned.

Hope this clarifies. 
Regards,


  • Author
  • Freshman II
  • 5 replies
  • Answer
  • November 30, 2021

Thanks for the responses, everyone.

 

I received an update from Acumatica stating that the issue should be resolved in the latest build of 21R1, though they didn’t confirm the nature of the problem or describe how it would be addressed.

 

@jinin -
The issue I’m trying to describe occurs when I specify different levels of access rights at the form-level and the form container-level. (In this case, Form = Receivables -> Customer Locations; Form Container = Receivables -> Customer Locations -> Location).

 

@ChandrasekharM -
The “Access Rights by Role” screen only displays that rights are “inherited”, without displaying the final value.


For example, in the screenshots below, the “Access Rights by Role” screen displays that permissions for the [Receivables -> Customer Locations -> Location -> Cancel] node are “Inherited” for the selected role. But if you view that same node using the “Access Rights by User” screen, it will display the actual value (e.g., “View Only”) that was inherited by a user assigned the role in question.

 

 

 

@vkumar -
There was a user selected in the screenshot I originally posted, but I removed the text as to not reveal their email address.


Forum|alt.badge.img+9
  • Semi-Pro I
  • 714 replies
  • November 30, 2021

Hi @damonb56 Thanks for the update on the response from the Acumatica Support team.

Assumption: Assuming that there is no additional Access rights provided for the user - Damo_test1 in Access Rights By User screen.

Thanks


Reply


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings