Newbie to advanced security writing needing help!!

 6 Replies
 0 Subscribed to this topic
 15 Subscribed to this forum
Sort:
Author
Messages
Ronnie
Veteran Member
Posts: 152
Veteran Member
    Ok,

    This is probably my first official post on the forum, but I have run into something that is a little more in depth than my security skill level currently resides at.

    Here is the situation:

    We are using the new lawson RQC (requisition center...former RSS)

    and within the shopping area on the accounting tab there is a field with a drill around called "Activity"

    I am told that this pulls its info from AC10.

    We are wanting to limit the drill around info to certain data for certain people.

    We are wanting to write a rule on this activity drill around stating that ----- if a person is a member of our Accounting group, then they can select and or view all activities. (activities for our searches pull up as a "2010.x.x "      x= other numbers, first part being fiscal year)

    If a person drilling around, is not a member of our accounting group, then they can only view and or select from data is 1 year old (fisal wise) up to current fiscal year entries.   (so they would be able to see any of the activities data starting with 2010.x.x  all the way to 2011.x.x)

    How would one go about writing a rule to do this? I understand the basics and think I could almost write a rule conditionally stating access or no accesss to that data, but thats about where my knowledge cuts off. I also would have to make sure that I am writing this rule on the correct area within LS. 

    We are LS9 also.

    I can provide print screen showing the areas I am speaking of.

    Hope someone can help.

    THanks!!!!
    Attachments
    Ronnie
    Veteran Member
    Posts: 152
    Veteran Member
      I have added a small zip file containing a word document with print screens to kind of help show what we are speaking of.

      Thanks
      Ronnie
      Veteran Member
      Posts: 152
      Veteran Member
        Anyone that could give some pointers would be greatly greatly appreciated!!
        Greg Moeller
        Veteran Member
        Posts: 1498
        Veteran Member
          Locate the table that the activity is stored in. (Drills are always table security).
          Write a security rule on that table.... conditional rule
          if(user.isMemberOf('Accounting Dept'))
          'I,'
          else
          'NO_ACCESS,'

          Will get you access if you belong to the Accounting Dept group in LS.

          Then test, test, test. There may be other tables that you need to write these rules on as well.
          Greg Moeller
          Veteran Member
          Posts: 1498
          Veteran Member
            Maybe a rule like this:
            if(user.isMemberOf('GHS Lawson Users'))
            'I,'
            elseif(table.ACTIVITY>'2009.9999.999')
            'I,'
            else
            'NO_ACCESS,'
            Ronnie
            Veteran Member
            Posts: 152
            Veteran Member
              Posted By Greg Moeller on 07/19/2011 04:44 PM
              Maybe a rule like this:
              if(user.isMemberOf('GHS Lawson Users'))
              'I,'
              elseif(table.ACTIVITY>'2009.9999.999')
              'I,'
              else
              'NO_ACCESS,'


              I am thinking something along these lines. I guess my first form of action is to find the correct thing to write the rule on. Not sure if it would be an element or a file, etc since it is drill around data that we are wanting to write the rule on.
              Ronnie
              Veteran Member
              Posts: 152
              Veteran Member
                Also....can anyone think of a way to write a rule like this where you wouldnt have to go back every year and remember to edit the rule? Where maybe it would just somehow work off the current year date??