Business case 4: Set conditions for users to delete cards using Server Scripts (Before Delete)
Organizations provide permissions and privileges to various sections of staff according to their roles and profiles. In order to make sure that the data within Qntrl can only be deleted by the right personnel, organizations can implement complex criteria and conditions using server scripts.
Business Scenario
To delete cards of the Appraisal orchestration of Zylker organization, the user in Qntrl must have a Product Admin role. Employees with the User profile must not be allowed to delete a card, and cards with due dates in the future must not be deleted.
Note
: Even if a user's profile or role does not have permissions in Access Control to delete a card, this server script overwrites the existing permissions and allows the user to delete the card.
Solution
When a user tries to delete a card in
Appraisal
orchestration, you can trigger server scripts to check user permissions and restrict the deletion operation.
-
Create a server script and code the logic to validate the users who perform delete operation.
-
Delete a card in
Appraisal
orchestration and test the server script.
Sample Configuration
Step 1: Create an orchestration
Create a new orchestration titled 'Appraisal' and add relevant custom fields to it.
Once the form is saved, proceed to design the blueprint, set permissions, and publish the orchestration.
Step 2: Code server scripts
Create a new server script for the
Appraisal
orchestration to validate users.
-
Click
New Script
and enter the name as 'Validate card deletion'.
-
Choose
Appraisal
in the
Form
dropdown.
-
Choose
Job
as the
Execution Location
to execute the script.
-
Choose
Before Delete
as the
Execution Trigger
to execute this script whenever the card page loads.
-
Copy and paste the below script into your script editor and replace the parameter names.
-
You can use the ? icon at the top-right corner of the script editor to refer to parameter names.
-
Once the script is ready,
Publish
it.
- function beforeDelete(){
- var userProfileId = "<enter profile ID here>";
- //Get profile ID from our API doc: Get profile details
- var productAdminRoleId = "<enter role ID here>";
- //Get role ID from our API doc: Get role details
- // This script allows users with Product Admin role alone to delete the cards. Employees with User profiles cannot delete the card.
- // Also due date must exceed the current date. Otherwise reject the card deletion.
- var user = current.User;
- var profile = user.getProfile();
- var roles = user.getRoles();
- if (profile.getId() == userProfileId) {
- throwError("You do not have permission to delete the card");
- }
- var hasRole = false;
- for (var i = 0; i < roles.length; i++) {
- var role = roles[i];
- if (role.getId() == productAdminRoleId) {
- hasRole = true;
- break;
- }
- }
- if (!hasRole) {
- throwError("You don't have Product Admin role to delete this card");
- }
- var dueDate = current.Job.getValue(current.Layout.Fields.duedate.id);
- if (dueDate) {
- var currentMillis = Date.now();
- var dueDateMillis = dateStringToTimestamp(dueDate);
- console.log("currentMillis < dueDateMillis = " + currentMillis < dueDateMillis);
- if (currentMillis < dueDateMillis) {
- throwError("Card's due date is in the future. Cannot delete it.");
- }
- }
- return true;
- }
- function dateStringToTimestamp(dateString) {
- // logic based on exact dateformat: mm-dd-yyyy h:mm a
- if (!dateString || !(typeof dateString === "string")) {
- return null;
- }
- var target = new Date();
- dateString = dateString.trim();
- var spaceSplitted = dateString.split(" ");
- var datePart = spaceSplitted[0];
- var dateSplitted = datePart.split("-");
- target.setMonth(+dateSplitted[0] - 1);
- target.setDate(dateSplitted[1]);
- target.setFullYear(dateSplitted[2]);
- if (!spaceSplitted[1]) {
- // there is no time detail in given dateString
- target.setHours(0, 0, 0, 0);
- } else {
- var timeSplitted = spaceSplitted[1].split(":");
- var isAmPm = spaceSplitted[2];
- if (!isAmPm) {
- target.setHours(timeSplitted[0], timeSplitted[1], 0, 0);
- } else {
- var ampm = isAmPm.toLowerCase();
- var hour = +timeSplitted[0];
- var mins = +timeSplitted[1];
- if (hour == 12 && ampm == "am") {
- hour = 0;
- } else if (hour == 12 && ampm == "pm") {
- hour = 12;
- } else if (ampm == "pm") {
- hour += 12;
- }
- target.setHours(hour, mins, 0, 0);
- }
- }
- return target.getTime();
- }
Step 2: Delete card
To test the script, delete a card from the
Appraisal
orchestration using different user profiles and roles.
-
When someone other than users in Product Admin role deletes the card, an error message is displayed as follows: ‘You don't have Product Admin role to delete this card'.
-
When someone with User profile deletes the card, an error message is displayed as follows: ‘You do not have permission to delete the card’.
-
When a card with due date in the future is deleted, an error message is thrown as follows: ‘Card's due date is in the future. Cannot delete it.’
Access your files securely from anywhere
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
New to Zoho Writer?
Create. Review. Publish.
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.
New to Zoho Survey?
Zoho Sheet Resources
Zoho Forms Resources
New to Zoho Sign?
Zoho Sign Resources
Sign, Paperless!
New to Zoho TeamInbox?
Zoho TeamInbox Resources
New to Zoho ZeptoMail?
Design. Discuss. Deliver.
New to Zoho Workerly?
New to Zoho Recruit?
New to Zoho CRM?
New to Zoho Projects?
New to Zoho Sprints?
New to Zoho Assist?
New to Bigin?
Related Articles
Business case 2: Use client scripts to auto-populate fields based on user input
While designing forms, we would sometimes require to display different sets of fields for different user responses. Such automatic field population can be handled using client scripts. Business Scenario Helen creates a sign-up form for her product ...Manage Client Scripts
Client Scripts are used to incorporate additional validations to business data while they are recorded in Qntrl. In client scripts, you can code using JavaScript and run the code on the end-user’s browser while they are creating a new card or ...Business case 1: Use client scripts to perform mathematical calculations and validations on data
While designing forms to replicate finance related documents like purchase order, invoice, or reimbursement bills, our workflows might require the calculation of total cost or sum of expenses incurred. To automate such mathematical calculations and ...Business case 3: Use client scripts to fetch data from third party applications or websites
While designing forms, we might sometimes want to display data from other websites or applications like stock rates, flight status, freight details, weather updates, and so on. To fetch such information from third party websites or applications and ...Use case for Bridge: Connect with remote databases using Bridge
Most organizations secure their remote databases using firewalls. If you are looking for a way to navigate these firewalls to access remote databases, Bridge can be of help. Let us try to solve a real-time business case where bridge is used to access ...
New to Zoho LandingPage?
Zoho LandingPage Resources