I'm pretty new to Creator and need help figuring out how to set permissions on specific app data.
Basically, portal users will submit data for their respective companies. I need to restrict form lookups, submits, edits, and associated reports based on what companies the user has access to.
The main considerations with the project are:
- One user should be able to access multiple companies - ex) John is an exec for 2 separate companies and needs to access/submit data for both. Each user is anticipated to access 1-50 companies. Some companies have a parent-child relationship.
- Multiple users should be able to access one company - ex) John is an exec for a company. Both he and his HR person will need to access and submit data for the company. We'll have 1-15 users per company.
- All users should have access to data regarding their company/ies, regardless of who added/modified it (self, admin, or other company user).
- All users will have different data access levels based on titles (the easiest piece to work around).
How do I go about designing forms and reports so this can be done? I can't set filters by Added User or Last Modified User without excluding data. It appears I can't set filters on form load using Deluge in Creator 5. And it seems the permissions under the Portal Settings are too general.
Right now, we'll use Zapier to create a few initial records (crummy integration btw), then let Deluge do the rest. I'm using a combination of stateless and regular forms to send data through. I've got a master list running of companies, all of which have static IDs attached to them. I'm thinking I'll need a master list of users as well (not sure if it needs to be separate from Customers). I don't know if I should use subforms, lookups, parameters, filters, profiles, or deluge - or how to design a functional combination that achieves the goal.
Any feedback is much appreciated!