Business case 4: Set conditions for users to delete cards using Server Scripts (Before Delete)
Organizations provide permissions and privileges to various sections of staff according to their roles and profiles. In order to make sure that the data within Qntrl can only be deleted by the right personnel, organizations can implement complex criteria and conditions using server scripts.
Business Scenario
To delete cards of the Appraisal orchestration of Zylker organization, the user in Qntrl must have a Product Admin role. Employees with the User profile must not be allowed to delete a card, and cards with due dates in the future must not be deleted.
Note
: Even if a user's profile or role does not have permissions in Access Control to delete a card, this server script overwrites the existing permissions and allows the user to delete the card.
Solution
When a user tries to delete a card in
Appraisal
orchestration, you can trigger server scripts to check user permissions and restrict the deletion operation.
-
Create a server script and code the logic to validate the users who perform delete operation.
-
Delete a card in
Appraisal
orchestration and test the server script.
Sample Configuration
Step 1: Create an orchestration
Create a new orchestration titled 'Appraisal' and add relevant custom fields to it.
Once the form is saved, proceed to design the blueprint, set permissions, and publish the orchestration.
Step 2: Code server scripts
Create a new server script for the
Appraisal
orchestration to validate users.
-
Click
New Script
and enter the name as 'Validate card deletion'.
-
Choose
Appraisal
in the
Form
dropdown.
-
Choose
Job
as the
Execution Location
to execute the script.
-
Choose
Before Delete
as the
Execution Trigger
to execute this script whenever the card page loads.
-
Copy and paste the below script into your script editor and replace the parameter names.
-
You can use the ? icon at the top-right corner of the script editor to refer to parameter names.
-
Once the script is ready,
Publish
it.
- function beforeDelete(){
- var userProfileId = "<enter profile ID here>";
- //Get profile ID from our API doc: Get profile details
- var productAdminRoleId = "<enter role ID here>";
- //Get role ID from our API doc: Get role details
- // This script allows users with Product Admin role alone to delete the cards. Employees with User profiles cannot delete the card.
- // Also due date must exceed the current date. Otherwise reject the card deletion.
- var user = current.User;
- var profile = user.getProfile();
- var roles = user.getRoles();
- if (profile.getId() == userProfileId) {
- throwError("You do not have permission to delete the card");
- }
- var hasRole = false;
- for (var i = 0; i < roles.length; i++) {
- var role = roles[i];
- if (role.getId() == productAdminRoleId) {
- hasRole = true;
- break;
- }
- }
- if (!hasRole) {
- throwError("You don't have Product Admin role to delete this card");
- }
- var dueDate = current.Job.getValue(current.Layout.Fields.duedate.id);
- if (dueDate) {
- var currentMillis = Date.now();
- var dueDateMillis = dateStringToTimestamp(dueDate);
- console.log("currentMillis < dueDateMillis = " + currentMillis < dueDateMillis);
- if (currentMillis < dueDateMillis) {
- throwError("Card's due date is in the future. Cannot delete it.");
- }
- }
- return true;
- }
- function dateStringToTimestamp(dateString) {
- // logic based on exact dateformat: mm-dd-yyyy h:mm a
- if (!dateString || !(typeof dateString === "string")) {
- return null;
- }
- var target = new Date();
- dateString = dateString.trim();
- var spaceSplitted = dateString.split(" ");
- var datePart = spaceSplitted[0];
- var dateSplitted = datePart.split("-");
- target.setMonth(+dateSplitted[0] - 1);
- target.setDate(dateSplitted[1]);
- target.setFullYear(dateSplitted[2]);
- if (!spaceSplitted[1]) {
- // there is no time detail in given dateString
- target.setHours(0, 0, 0, 0);
- } else {
- var timeSplitted = spaceSplitted[1].split(":");
- var isAmPm = spaceSplitted[2];
- if (!isAmPm) {
- target.setHours(timeSplitted[0], timeSplitted[1], 0, 0);
- } else {
- var ampm = isAmPm.toLowerCase();
- var hour = +timeSplitted[0];
- var mins = +timeSplitted[1];
- if (hour == 12 && ampm == "am") {
- hour = 0;
- } else if (hour == 12 && ampm == "pm") {
- hour = 12;
- } else if (ampm == "pm") {
- hour += 12;
- }
- target.setHours(hour, mins, 0, 0);
- }
- }
- return target.getTime();
- }
Step 2: Delete card
To test the script, delete a card from the
Appraisal
orchestration using different user profiles and roles.
-
When someone other than users in Product Admin role deletes the card, an error message is displayed as follows: ‘You don't have Product Admin role to delete this card'.
-
When someone with User profile deletes the card, an error message is displayed as follows: ‘You do not have permission to delete the card’.
-
When a card with due date in the future is deleted, an error message is thrown as follows: ‘Card's due date is in the future. Cannot delete it.’
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho SalesIQ Resources
New to Zoho TeamInbox?
Zoho TeamInbox Resources
New to Zoho ZeptoMail?
New to Zoho DataPrep?
Zoho DataPrep Resources
Design. Discuss. Deliver.
New to Zoho Workerly?
New to Zoho Recruit?
New to Bigin?
New to Zoho CRM?
New to Zoho Projects?
New to Zoho Sprints?
New to Zoho Assist?
Related Articles
Business case 3: Validate new data entered in cards using Server Scripts (Before Update)
Performing operations and coordinating with teams can be quite a herculean task. If the information given in the card details is changed to corrupt information later, it may create chaos and slow down task completion. This is why if a user is to make ...Business case 1: Populate read recipients list for a card using Server Scripts (On Load)
Managers find it useful to know which employees have viewed a new card or comment, like a read receipts list. It helps managers know if an employee has viewed his assigned task and evaluate how informed employees are about new updates in the ...Business case 2: Fetch data from third party websites using Server Scripts (Before Create)
We might sometimes want to fetch external data from other applications or websites like weather details, stock rates, or flight status related to the card, when we create a card. Server scripts can be used to fetch such data and display it in Qntrl. ...Business case 6: Delete associated cards from third-party applications (After Delete)
Automate deleting records in third party applications, such as Zoho Desk or SAP, once they are deleted in Qntrl using the 'After Delete' server script. Business Scenario Zylker uses Jira to track issues in their products and every bug filed in ...Manage Server scripts
Server scripts help you code company-specific business logic to manage database, perform time-consuming processes quickly, and automate activities in your business workflows. These scripts running on a server help you retrieve, display, and ...